gitlab-org--gitlab-foss

Commit Graph

Author	SHA1	Message	Date
Timothy Andrew	4dfdef2ddf	Allow admins to sudo to blocked users. - Currently, (for example) admins can't delete snippets for blocked users, which is an unexpected limitation. - We modify `authenticate!` to conduct the `access_api` policy check against the `initial_current_user`, instead of the user being impersonated. - Update CHANGELOG for !10842	2017-04-26 08:00:19 +00:00

Author

SHA1

Message

Date

Timothy Andrew

4dfdef2ddf

Allow admins to sudo to blocked users.

- Currently, (for example) admins can't delete snippets for blocked users, which
  is an unexpected limitation.

- We modify `authenticate!` to conduct the `access_api` policy check against the
  `initial_current_user`, instead of the user being impersonated.

- Update CHANGELOG for !10842

2017-04-26 08:00:19 +00:00

1 Commits