kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/app
History
Timothy Andrew 7fa06ed55d Calls to the API are checked for scope. 
- Move the `Oauth2::AccessTokenValidationService` class to
  `AccessTokenValidationService`, since it is now being used for
  personal access token validation as well.

- Each API endpoint declares the scopes it accepts (if any). Currently,
  the top level API module declares the `api` scope, and the `Users` API
  module declares the `read_user` scope (for GET requests).

- Move the `find_user_by_private_token` from the API `Helpers` module to
  the `APIGuard` module, to avoid littering `Helpers` with more
  auth-related methods to support `find_user_by_private_token`
2016-12-16 16:29:31 +05:30
..
assets Allow creating personal access tokens / OAuth applications with scopes. 2016-12-16 15:08:10 +05:30
controllers Allow creating personal access tokens / OAuth applications with scopes. 2016-12-16 15:08:10 +05:30
finders Merge branch 'jej-24637-move-issue-visible_to_user-to-finder' into 'security' 2016-12-15 11:41:04 -03:00
helpers Merge branch 'build-statuses' into 'master' 2016-12-14 12:34:22 +00:00
mailers Add new template to handle both commit & mr notes 2016-11-25 15:23:49 +00:00
models Add a scopes column to the personal_access_tokens table 2016-12-16 15:08:10 +05:30
policies Backport hooks on group policies for the EE-specific implementation 2016-12-13 11:51:09 -02:00
serializers Merge branch 'fix/ca-no-date' into 'master' 2016-11-30 10:01:56 +00:00
services Calls to the API are checked for scope. 2016-12-16 16:29:31 +05:30
uploaders Add Gitlab::Middleware::Multipart 2016-12-15 12:26:36 +01:00
validators Add nested groups support to the routing 2016-11-23 14:08:36 +02:00
views Allow creating personal access tokens / OAuth applications with scopes. 2016-12-16 15:08:10 +05:30
workers Merge branch 'fix/rename-mwbs-to-merge-when-pipeline-succeeds' into 'master' 2016-12-05 11:07:57 +00:00