kotovalexarian-likes-gitlab
/
gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/spec/fixtures
History
Timothy Andrew 34b71e734b Don't display the `is_admin?` flag for user API responses. 
- To prevent an attacker from enumerating the `/users` API to get a list of all
  the admins.

- Display the `is_admin?` flag wherever we display the `private_token` - at the
  moment, there are two instances:

  - When an admin uses `sudo` to view the `/user` endpoint
  - When logging in using the `/session` endpoint
 		2017-04-25 09:46:05 +00:00
..
api/schemas Don't display the `is_admin?` flag for user API responses. 2017-04-25 09:46:05 +00:00
config Use newer mail_room to get `require_relative` support 2017-02-20 17:38:21 +01:00
container_registry
emails Fix References header parser for Microsoft Exchange 2017-01-20 20:19:22 +08:00
project_services/campfire
trace After Trace#limit, we seek to the next line in case 2017-04-13 21:44:26 +08:00
GoogleCodeProjectHosting.json
banana_sample.gif
blockquote_fence_after.md
blockquote_fence_before.md
ci_build_artifacts.zip
ci_build_artifacts_metadata.gz
dk.png
doc_sample.txt
domain_blacklist.txt
logo_sample.svg
markdown.md.erb SanitizationFilter allows html5 details and summary (Issue #21605) 2017-03-06 16:27:49 +00:00
metrics.json Added mock deployment and monitoring service with environments fixtures 2017-04-05 11:04:34 +00:00
pages.tar.gz Add GitLab Pages 2017-01-31 22:50:39 +00:00
pages.zip Added support for zip archives in pages 2017-01-31 22:53:57 +00:00
pages.zip.meta Added support for zip archives in pages 2017-01-31 22:53:57 +00:00
pages_empty.tar.gz Add GitLab Pages 2017-01-31 22:50:39 +00:00
pages_empty.zip Added support for zip archives in pages 2017-01-31 22:53:57 +00:00
pages_empty.zip.meta Added support for zip archives in pages 2017-01-31 22:53:57 +00:00
rails_sample.jpg
sanitized.svg
unsanitized.svg
video_sample.mp4