Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add latest changes from gitlab-org/gitlab@14-7-stable-eev14.7.0-rc42 | GitLab Bot | 2022-01-20 | 1 | -9/+130 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-4-stable-eev14.4.0-rc42 | GitLab Bot | 2021-10-20 | 1 | -1/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-1-stable-eev14.1.0-rc42 | GitLab Bot | 2021-07-20 | 1 | -13/+0 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@14-0-stable-eev14.0.0-rc42 | GitLab Bot | 2021-06-16 | 1 | -40/+56 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-12-stable-eev13.12.0-rc42 | GitLab Bot | 2021-05-19 | 1 | -19/+225 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-8-stable-eev13.8.0-rc42 | Robert Speicher | 2021-01-20 | 1 | -0/+9 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-6-stable-eev13.6.0-rc42 | GitLab Bot | 2020-11-19 | 1 | -0/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-3-stable-ee | GitLab Bot | 2020-08-20 | 1 | -0/+10 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-2-stable-ee | GitLab Bot | 2020-07-20 | 1 | -1/+1 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2020-04-06 | 1 | -10/+0 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | 2019-12-17 | 1 | -11/+0 |
| | |||||
* | Use `stub_full_request` to fix spec failure66641-broken-master-real-http-connections-are-disabled-unregistered-request | Heinrich Lee Yu | 2019-08-27 | 1 | -13/+20 |
| | | | | Also change test URL sequest to .test TLD | ||||
* | Refactor SystemHookUrlValidator and specs | George Koltsov | 2019-08-02 | 1 | -5/+5 |
| | | | | | | Simplify SystemHookUrlValidator to inherit from PublicUrlValidator Refactor specs to move out shared examples to be used in both system hooks and public url validators. | ||||
* | Update security/webhooks.md doc page & specs | George Koltsov | 2019-08-02 | 1 | -29/+21 |
| | | | | | | Updating security/webhooks.md to match new behaviour as well as drying up few specs to extract shared examples | ||||
* | Add outbound requests setting for system hooks | George Koltsov | 2019-08-02 | 1 | -8/+36 |
| | | | | | | | This MR adds new application setting to network section `allow_local_requests_from_system_hooks`. Prior to this change system hooks were allowed to do local network requests by default and we are adding an ability for admins to control it. | ||||
* | Protect Gitlab::HTTP against DNS rebinding attack | Douwe Maan | 2019-05-30 | 1 | -4/+6 |
| | | | | | | Gitlab::HTTP now resolves the hostname only once, verifies the IP is not blocked, and then uses the same IP to perform the actual request, while passing the original hostname in the `Host` header and SSL SNI field. | ||||
* | Add frozen_string_literal to spec/servicesfrozen_string_literal_spec_services | Thong Kuah | 2019-04-12 | 1 | -0/+2 |
| | | | | Probably useful as we often move these files to "new" files. | ||||
* | Fix WebHookService spec failing in Ruby 2.6 | Stan Hu | 2019-02-16 | 1 | -1/+1 |
| | | | | | | | | Ruby 2.6 changed Net::ReadTimeout#message to include the reason for the socket error (https://bugs.ruby-lang.org/issues/14832). However, WebHookService was failing in Ruby 2.6 because it expected Exception#message to match Exception#to_s, which isn't always the case. Fix this by just checking Exception#to_s. | ||||
* | Enable the Layout/ExtraSpacing cop56392-enable-the-layout-extraspacing-cop | Rémy Coutable | 2019-01-24 | 1 | -2/+2 |
| | | | | Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
* | Catch `RedirectionTooDeep` Exception in webhooks | Heinrich Lee Yu | 2018-10-19 | 1 | -1/+1 |
| | |||||
* | Resolve "WebHookService doesn't handle user info with nil passwords" | Jan Beckmann | 2018-06-25 | 1 | -0/+30 |
| | |||||
* | Ensure web hook 'blocked URL' errors are stored in as web hook logs and ↵ | Douwe Maan | 2018-05-04 | 1 | -1/+1 |
| | | | | properly surfaced to the user | ||||
* | Merge branch 'fj-15329-services-callbacks-ssrf' into 'security-10-6' | Douwe Maan | 2018-03-21 | 1 | -0/+14 |
| | | | | | Server Side Request Forgery in Services and Web Hooks See merge request gitlab/gitlabhq!2337 | ||||
* | Consistently schedule Sidekiq jobsdm-application-worker | Douwe Maan | 2017-12-05 | 1 | -1/+1 |
| | |||||
* | Fix a wrong `X-Gitlab-Event` header when testing webhooks37288-fix-wrong-header-when-testing-webhook | Rémy Coutable | 2017-09-07 | 1 | -1/+1 |
| | | | | Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
* | Enable Layout/TrailingWhitespace cop and auto-correct offenses | Robert Speicher | 2017-08-15 | 1 | -1/+1 |
| | |||||
* | Enable the RSpec/HookArgument cop and auto-correct offenses | Robert Speicher | 2017-08-10 | 1 | -1/+1 |
| | |||||
* | Change all `:empty_project` to `:project`rs-empty_project-default | Robert Speicher | 2017-08-02 | 1 | -1/+1 |
| | |||||
* | Fix encoding error for WebHook logging | Alexander Randa | 2017-08-01 | 1 | -0/+17 |
| | |||||
* | Merge branch 'log_webhook_timeout' into 'master' | Rémy Coutable | 2017-07-28 | 1 | -1/+1 |
|\ | | | | | | | | | Log web hook execution timeout events See merge request !13134 | ||||
| * | Log web hook execution timeout events | Alex Lossent | 2017-07-27 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | | | | If a web hook HTTP request is sent but no response comes within a certain time (10s by default), the hook execution fails and will be retried. This commit makes such timeouts visible in the web hook log, like connection timeouts already are. Also log "no route to host" errors. | ||||
* | | Use described_class when possible | Rémy Coutable | 2017-07-27 | 1 | -3/+3 |
| | | | | | | | | Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
* | | Remove superfluous lib: true, type: redis, service: true, models: true, ↵ | Rémy Coutable | 2017-07-27 | 1 | -1/+1 |
|/ | | | | | | services: true, no_db: true, api: true Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
* | Wrong data type when testing webhooks | Alexander Randa | 2017-07-20 | 1 | -3/+3 |
| | |||||
* | Implement web hooks logging | Alexander Randa | 2017-05-25 | 1 | -0/+137 |
* implemented logging of project and system web hooks * implemented UI for user area (project hooks) * implemented UI for admin area (system hooks) * implemented retry of logged webhook * NOT imeplemented log remover |