kotovalexarian-likes-gitlab
/
gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/spec/requests
History
Timothy Andrew 7fa06ed55d Calls to the API are checked for scope. 
- Move the `Oauth2::AccessTokenValidationService` class to
  `AccessTokenValidationService`, since it is now being used for
  personal access token validation as well.

- Each API endpoint declares the scopes it accepts (if any). Currently,
  the top level API module declares the `api` scope, and the `Users` API
  module declares the `read_user` scope (for GET requests).

- Move the `find_user_by_private_token` from the API `Helpers` module to
  the `APIGuard` module, to avoid littering `Helpers` with more
  auth-related methods to support `find_user_by_private_token`
 		2016-12-16 16:29:31 +05:30
..
api Calls to the API are checked for scope. 2016-12-16 16:29:31 +05:30
ci/api Changed API spec files to describe the correct class 2016-11-28 10:55:27 -07:00
projects Update effected tests 2016-12-04 17:32:33 +01:00
git_http_spec.rb Merge branch 'fix-unathorized-cloning' into 'security' 2016-11-09 12:27:17 +01:00
jwt_controller_spec.rb Merge branch 'unauthenticated-container-registry-access' into 'security' 2016-11-09 12:28:29 +01:00
lfs_http_spec.rb Allow owners to fetch source code in CI builds 2016-11-01 09:37:20 +01:00