kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/spec/fixtures/api/schemas
History
Timothy Andrew 34b71e734b Don't display the is_admin? flag for user API responses. 
- To prevent an attacker from enumerating the `/users` API to get a list of all
  the admins.

- Display the `is_admin?` flag wherever we display the `private_token` - at the
  moment, there are two instances:

  - When an admin uses `sudo` to view the `/user` endpoint
  - When logging in using the `/session` endpoint
2017-04-25 09:46:05 +00:00
..
public_api Don't display the is_admin? flag for user API responses. 2017-04-25 09:46:05 +00:00
board.json Fix board relates specs 2016-10-11 11:47:56 -03:00
boards.json Add index action to Projects::BoardsController to return project boards 2016-10-11 11:39:05 -03:00
conflicts.json Add JSON Schema 2016-10-13 14:16:34 -05:00
issue.json [Issue board sorting] Specs 2017-02-28 16:52:49 +02:00
issues.json Returns the total number of issues in the JSON response 2016-08-31 09:30:37 +01:00
list.json Change Done column to Closed in issue boards 2017-03-24 23:40:35 +11:00
lists.json Fix matcher match_response_schema 2016-08-17 12:58:59 -03:00