gitlab-org--gitlab-foss/spec/support/api/v3
Robert Speicher 3e4b45fc21 Only include the user's ID in the time_spent command's update hash
Previously, this would include the entire User record in the update
hash, which was rendered in the response using `to_json`, erroneously
exposing every attribute of that record, including their (now removed)
private token.

Now we only include the user ID, and perform the lookup on-demand.
2017-12-19 15:45:08 -06:00
..
time_tracking_shared_examples.rb Only include the user's ID in the time_spent command's update hash 2017-12-19 15:45:08 -06:00