summaryrefslogtreecommitdiff
path: root/spec/support/controllers
Commit message (Collapse)AuthorAgeFilesLines
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-01-241-0/+22
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-01-214-673/+0
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-11-081-4/+18
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-11-071-18/+4
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-11-011-1/+7
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-10-311-6/+0
|
* Merge branch 'security-remove-leaky-401-responses-master' into 'master'GitLab Release Tools Bot2019-10-291-4/+18
|\ | | | | | | | | Private/internal repository enumeration via bruteforce on a vulnerable URL See merge request gitlab/gitlabhq!3454
| * Avoid #authenticate_user! in #route_not_foundKerri Miller2019-10-091-4/+18
| | | | | | | | | | | | | | | | | | | | | | This method, #route_not_found, is executed as the final fallback for unrecognized routes (as the name might imply.) We want to avoid `#authenticate_user!` when calling `#route_not_found`; `#authenticate_user!` can, depending on the request format, return a 401 instead of redirecting to a login page. This opens a subtle security exploit where anonymous users will receive a 401 response when attempting to access a private repo, while a recognized user will receive a 404, exposing the existence of the private, hidden repo.
* | Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-10-231-0/+6
|/
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-09-181-0/+32
|
* Merge branch 'remove-nested-groups-checks' into 'master'Lin Jen-Shin2019-07-261-3/+3
|\ | | | | | | | | | | | | Remove code related to object hierarchy and MySQL Closes #65056 and #65055 See merge request gitlab-org/gitlab-ce!31095
| * Remove code related to object hierarchy in MySQLremove-nested-groups-checksHeinrich Lee Yu2019-07-251-3/+3
| | | | | | | | | | These are not required because MySQL is not supported anymore
* | Add frozen_string_literal to spec/supportThong Kuah2019-07-254-0/+8
|/ | | | | Using the sed script from https://gitlab.com/gitlab-org/gitlab-ce/issues/59758
* Revert Rails.application.env_config after using mock_auth_hashRémy Coutable2019-04-231-1/+5
| | | | Signed-off-by: Rémy Coutable <remy@rymai.me>
* Improve the GitHub and Gitea import feature table interfaceLuke Bennett2019-02-131-19/+84
| | | | | | | | | | | These are backend changes. Use Vue for the import feature UI for "githubish" providers (GitHub and Gitea). Add "Go to project" button after a successful import. Use CI-style status icons and improve spacing of the table and its component. Adds ETag polling to the github and gitea import jobs endpoint.
* convert specs in javascripts/ and support/ to new syntaxJasper Maes2018-12-211-17/+17
|
* Update specs to rails5 formatblackst0ne-convert-specs-rails5-styleblackst0ne2018-12-191-7/+7
| | | | | | | | | | Updates specs to use new rails5 format. The old format: `get :show, { some: params }, { some: headers }` The new format: `get :show, params: { some: params }, headers: { some: headers }`
* Merge branch 'security-fix-pat-web-access' into 'master'Cindy Pallares2018-11-281-0/+92
| | | | | [master] Resolve "Personal access token with only `read_user` scope can be used to authenticate any web request" See merge request gitlab/gitlabhq!2583
* Strip whitespace around GitHub personal access tokensStan Hu2018-10-171-0/+12
| | | | | | | Some browsers insert a trailing whitespace after pasting the token into the field. This should help reduce confusion. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/46588
* Simplify error message handling in Projects::CreateServiceStan Hu2018-06-061-15/+0
| | | | | There's no need to add a redundant message to the errors if the model is invalid. This cleans up the message as well for the importer.
* Show a more helpful error for import statusStan Hu2018-06-061-2/+22
| | | | | | | | Importing a project from GitHub for a project namespace that already exists would show an unhelpful error, "An error occurred while importing project." We now add the base message from Projects::CreateService when this fails. Closes #47365
* Merge branch 'jej/refactor-omniauth-controller' into 'master'Douwe Maan2018-04-241-0/+33
|\ | | | | | | | | | | | | Refactor OmniauthCallbacksController to remove duplication Closes #26559 See merge request gitlab-org/gitlab-ce!16694
| * Refactor OmniauthCallbacksController to remove duplicationJames Edwards-Jones2018-04-221-0/+33
| | | | | | | | | | Moves LDAP to its own controller with tests Provides path forward for implementing GroupSaml
* | Resolve "Namespace factory is problematic"Lin Jen-Shin2018-04-231-4/+5
|/
* Resolve failures in GitHub-ish import controller specsrs-pick-securityRobert Speicher2018-02-091-4/+4
|
* Merge branch 'fix/gh-namespace-issue' into 'security-10-4'James Lopez2018-02-091-3/+54
| | | | [10.4] Fix GH namespace security issue
* Replace $.post in importer status with axiosClement Ho2018-02-091-32/+63
|
* Rewrite the GitHub importer from scratchYorick Peterse2017-11-071-18/+18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Prior to this MR there were two GitHub related importers: * Github::Import: the main importer used for GitHub projects * Gitlab::GithubImport: importer that's somewhat confusingly used for importing Gitea projects (apparently they have a compatible API) This MR renames the Gitea importer to Gitlab::LegacyGithubImport and introduces a new GitHub importer in the Gitlab::GithubImport namespace. This new GitHub importer uses Sidekiq for importing multiple resources in parallel, though it also has the ability to import data sequentially should this be necessary. The new code is spread across the following directories: * lib/gitlab/github_import: this directory contains most of the importer code such as the classes used for importing resources. * app/workers/gitlab/github_import: this directory contains the Sidekiq workers, most of which simply use the code from the directory above. * app/workers/concerns/gitlab/github_import: this directory provides a few modules that are included in every GitHub importer worker. == Stages The import work is divided into separate stages, with each stage importing a specific set of data. Stages will schedule the work that needs to be performed, followed by scheduling a job for the "AdvanceStageWorker" worker. This worker will periodically check if all work is completed and schedule the next stage if this is the case. If work is not yet completed this worker will reschedule itself. Using this approach we don't have to block threads by calling `sleep()`, as doing so for large projects could block the thread from doing any work for many hours. == Retrying Work Workers will reschedule themselves whenever necessary. For example, hitting the GitHub API's rate limit will result in jobs rescheduling themselves. These jobs are not processed until the rate limit has been reset. == User Lookups Part of the importing process involves looking up user details in the GitHub API so we can map them to GitLab users. The old importer used an in-memory cache, but this obviously doesn't work when the work is spread across different threads. The new importer uses a Redis cache and makes sure we only perform API/database calls if absolutely necessary. Frequently used keys are refreshed, and lookup misses are also cached; removing the need for performing API/database calls if we know we don't have the data we're looking for. == Performance & Models The new importer in various places uses raw INSERT statements (as generated by `Gitlab::Database.bulk_insert`) instead of using Rails models. This allows us to bypass any validations and callbacks, drastically reducing the number of SQL queries and Gitaly RPC calls necessary to import projects. To ensure the code produces valid data the corresponding tests check if the produced rows are valid according to the model validation rules.
* Removes default scope from sortable23079-remove-default-scope-in-sortableTiago Botelho2017-09-071-6/+8
|
* Change all `:empty_project` to `:project`rs-empty_project-defaultRobert Speicher2017-08-021-2/+2
|
* Enable Style/DotPosition Rubocop :cop:Grzegorz Bizon2017-06-211-50/+50
|
* Revert "Remove changes that are not absolutely necessary"Douwe Maan2017-05-241-4/+12
| | | This reverts commit b0498c176fa134761d899c9b369be12f1ca789c5
* Create subgroups if they don't exist while importing projectsJames Lopez2017-04-051-3/+56
|
* Allow users to import GitHub projects to subgroupsDouglas Barbosa Alexandre2017-03-301-0/+14
|
* Namespace access token session key in `Import::GithubController`Rémy Coutable2016-12-191-12/+16
| | | | Signed-off-by: Rémy Coutable <remy@rymai.me>
* Modify GithubImport to support GiteaRémy Coutable2016-12-192-0/+238
The reason is that Gitea plan to be GitHub-compatible so it makes sense to just modify GitHubImport a bit for now, and hopefully we can change it to GitHubishImport once Gitea is 100%-compatible. Signed-off-by: Rémy Coutable <remy@rymai.me>
View Lorry Controller Status