kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/app/assets/javascripts/releases
History
Krasimir Angelov 241ba4be79 Allow guests users to access project releases 
This is step one of resolving
https://gitlab.com/gitlab-org/gitlab-ce/issues/56838.

Here is what changed:
- Revert the security fix from bdee9e8412.
- Do not leak repository information (tag name, commit) to guests in API
responses.
- Do not include links to source code in API responses for users that do
not have download_code access.
- Show Releases in sidebar for guests.
- Do not display links to source code under Assets for users that do not
have download_code access.

GET ':id/releases/:tag_name' still do not allow guests to access
releases. This is to prevent guessing tag existence.
2019-05-03 13:29:20 +00:00
..
components Allow guests users to access project releases 2019-05-03 13:29:20 +00:00
store Fix misspellings in app/spec executable lines 2019-02-27 22:41:34 +09:00
index.js Resolve "Wrong API call on releases page" 2018-12-21 11:53:03 +00:00