kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/app/policies
History
Sean McGivern 5883ce95ef current_application_settings belongs on Gitlab::CurrentSettings 
The initializers including this were doing so at the top level, so every object
loaded after them had a `current_application_settings` method. However, if
someone had rack-attack enabled (which was loaded before these initializers), it
would try to load the API, and fail, because `Gitlab::CurrentSettings` didn't
have that method.

To fix this:

1. Don't include `Gitlab::CurrentSettings` at the top level. We do not need
   `Object.new.current_application_settings` to work.
2. Make `Gitlab::CurrentSettings` explicitly `extend self`, as we already use it
   like that in several places.
3. Change the initializers to use that new form.
2017-08-31 13:38:33 +01:00
..
ci Rename :user_cannot_update to :protected_ref 2017-07-18 22:13:57 +08:00
base_policy.rb current_application_settings belongs on Gitlab::CurrentSettings 2017-08-31 13:38:33 +01:00
commit_status_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
deploy_key_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
deployment_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
environment_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
external_issue_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
global_policy.rb Allow logged in users to read user list under public restriction 2017-08-01 07:46:13 +00:00
group_label_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
group_member_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
group_policy.rb Improves subgroup creation permissions 2017-08-21 15:40:22 +01:00
issuable_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
issue_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
merge_request_policy.rb
namespace_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
nil_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
note_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
personal_snippet_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
project_label_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
project_member_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
project_policy.rb replace is_team_member? with team_member? 2017-08-29 11:14:42 +03:00
project_snippet_policy.rb convert all the policies to DeclarativePolicy 2017-06-27 12:44:37 -07:00
user_policy.rb Merge remote-tracking branch 'origin/master' into 34141-allow-unauthenticated-access-to-the-users-api 2017-06-30 13:45:51 +00:00