kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
97827 commits 1 branch 0 tags 899 MiB
Commit graph

23 commits

Author SHA1 Message Date
Imre Farkas
bd3a484032
Add config to disable impersonation 
Adds gitlab.impersonation_enabled config option defaulting to true to
keep the current default behaviour.

Only the act of impersonation is modified, impersonation token
management is not affected.
 2018-11-29 09:37:16 +01:00
Cindy Pallares
fe5f75930e
Merge branch 'security-fix-pat-web-access' into 'master' 
[master] Resolve "Personal access token with only `read_user` scope can be used to authenticate any web request"

See merge request gitlab/gitlabhq!2583
 2018-11-28 19:13:59 -05:00
Imre Farkas
b9652d8e4d [master] Persist only SHA digest of PersonalAccessToken#token 2018-10-29 16:06:45 +00:00
gfyoung
e166e5747c Enable some frozen string in lib/gitlab 
Enable frozen string for the following files:

* lib/gitlab/auth/**/*.rb
* lib/gitlab/badge/**/*.rb
* lib/gitlab/bare_repository_import/**/*.rb
* lib/gitlab/bitbucket_import/**/*.rb
* lib/gitlab/bitbucket_server_import/**/*.rb
* lib/gitlab/cache/**/*.rb
* lib/gitlab/checks/**/*.rb

Partially addresses #47424.
 2018-10-13 02:31:31 -07:00
Yorick Peterse
2039c8280d
Disable existing offenses for the CodeReuse cops 
This whitelists all existing offenses for the various CodeReuse cops, of
which most are triggered by the CodeReuse/ActiveRecord cop.
 2018-09-11 17:32:00 +02:00
Imre Farkas
20dfe25c15 Export assigned issues in iCalendar feed 2018-05-31 14:01:04 +00:00
Rémy Coutable
dfdbf198b3
Minimize CE/EE difference in Gitlab::Auth::UserAuthFinders 
Signed-off-by: Rémy Coutable <remy@rymai.me>
 2018-05-18 16:30:53 +02:00
Francisco Javier López
4f6e0379b4 Fixing request json mime type 2018-01-15 09:09:21 +00:00
Francisco Lopez
4188c10c07 Renaming AuthenticationException to AuthenticationError 2017-11-17 13:33:21 +01:00
Francisco Lopez
7f0317917a Changes after rebase 2017-11-17 10:09:56 +01:00
Francisco Lopez
b810f479d5 Removing Offender 2017-11-17 10:02:11 +01:00
Francisco Lopez
1436598e49 Moved Exceptions to Gitlab::Auth 2017-11-17 10:02:11 +01:00
Francisco Lopez
aa84ef1e1a Moving exceptions to UserAuthFinders 2017-11-17 10:02:11 +01:00
Francisco Lopez
98f7982cec Leaving atom? query to fix tests 2017-11-17 10:02:11 +01:00
Francisco Lopez
29521a313a Change the rss url guard clause 2017-11-17 10:02:11 +01:00
Francisco Lopez
f189657523 Added some more comments 2017-11-17 10:02:11 +01:00
Francisco Lopez
2d5397d928 Removed method handle_return_value 2017-11-17 10:02:11 +01:00
Francisco Lopez
21153a4f47 Homogenising the type of the request handled by UserAuthFinder. Also tests fixed 2017-11-17 10:02:11 +01:00
Francisco Lopez
aecc3eb080 Applied some code review comments 2017-11-17 10:02:10 +01:00
Francisco Lopez
374179a970 Removing private token 2017-11-17 10:01:21 +01:00
Francisco Lopez
41ebd06ddc Some fixes after rebase 2017-11-17 10:01:20 +01:00
Francisco Lopez
470b5dc326 Updated refactor and pushing to see if test fails 2017-11-17 10:00:48 +01:00
Francisco Lopez
d948e67913 First refactor 2017-11-17 10:00:08 +01:00