gitlab-org--gitlab-foss/lib/api
Timothy Andrew 3c88a7869b Implement review comments for !12445 from @godfat and @rymai.
- Use `GlobalPolicy` to authorize the users that a non-authenticated user can
  fetch from `/api/v4/users`. We allow access if the `Gitlab::VisibilityLevel::PUBLIC`
  visibility level is not restricted.

- Further, as before, `/api/v4/users` is only accessible to unauthenticated users if
  the `username` parameter is passed.

- Turn off `authenticate!` for the `/api/v4/users` endpoint by matching on the actual
  route + method, rather than the description.

- Change the type of `current_user` check in `UsersFinder` to be more
  compatible with EE.
2017-06-30 13:06:03 +00:00
..
helpers Add “Project moved” error to Git-over-SSH 2017-06-16 14:14:19 -07:00
v3 Filter archived project in API v3 only if param present 2017-06-21 20:04:25 +03:00
access_requests.rb Enable Style/DotPosition Rubocop 👮 2017-06-21 13:48:12 +00:00
api.rb Merge branch 'dz-api-x-frame' into 'security-9-2' 2017-06-08 09:54:24 -07:00
api_guard.rb
award_emoji.rb
boards.rb
branches.rb Enable Style/DotPosition Rubocop 👮 2017-06-21 13:48:12 +00:00
broadcast_messages.rb
commit_statuses.rb
commits.rb
deploy_keys.rb Fix edit button for deploy keys available from other projects 2017-06-20 11:23:13 +00:00
deployments.rb
entities.rb Enable Style/DotPosition Rubocop 👮 2017-06-21 13:48:12 +00:00
environments.rb
events.rb Accept a username for User-level Events API 2017-06-06 20:16:41 +08:00
features.rb
files.rb Blob#load_all_data! doesn’t need an argument 2017-06-07 14:28:33 -05:00
groups.rb Backport https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/1942 2017-06-06 21:42:45 +08:00
helpers.rb Implement review comments for !12445 from @godfat and @rymai. 2017-06-30 13:06:03 +00:00
internal.rb Allow discover by userid - issue 28517 2017-06-20 08:53:28 -06:00
issues.rb add since and until params to issuables 2017-06-18 15:43:51 -07:00
jobs.rb
keys.rb
labels.rb
lint.rb
members.rb
merge_request_diffs.rb
merge_requests.rb Merge branch 'add-since-and-until-params-to-issuables' into 'master' 2017-06-19 12:13:27 +00:00
milestones.rb Order issues by priority 2017-06-16 11:59:39 -03:00
namespaces.rb
notes.rb Enable Style/DotPosition Rubocop 👮 2017-06-21 13:48:12 +00:00
notification_settings.rb
pagination_params.rb
pipeline_schedules.rb
pipelines.rb
project_hooks.rb
project_snippets.rb
projects.rb add printing_merge_request_link_enabled to API 2017-06-19 13:33:15 -04:00
repositories.rb
runner.rb Enable the Style/PreferredHashMethods cop 2017-06-02 19:11:26 +02:00
runners.rb
services.rb Rename "Slash commands" to "Quick actions" 2017-06-15 09:01:56 -05:00
session.rb
settings.rb Help landing page customizations 2017-06-14 11:40:21 -04:00
sidekiq_metrics.rb
snippets.rb
subscriptions.rb
system_hooks.rb
tags.rb Enable Style/DotPosition Rubocop 👮 2017-06-21 13:48:12 +00:00
templates.rb
time_tracking_endpoints.rb Enable the Style/PreferredHashMethods cop 2017-06-02 19:11:26 +02:00
todos.rb
triggers.rb
users.rb Implement review comments for !12445 from @godfat and @rymai. 2017-06-30 13:06:03 +00:00
variables.rb
version.rb