Commits · c39e4ccfb7cb76b9bdb613399aba2c2467b77751 · Boxiang Sun / gitlab-ce

26 Jun, 2017 2 commits

Add CHANGELOG entry for CE MR 12445 · c39e4ccf
Timothy Andrew authored Jun 26, 2017

c39e4ccf

Allow unauthenticated access to the `/api/v4/users` API. · 20f679d6

Timothy Andrew authored Jun 26, 2017

- The issue filtering frontend code needs access to this API for non-logged-in
  users + public projects. It uses the API to fetch information for a user by
  username.

- We don't authenticate this API anymore, but instead - if the `current_user` is
  not present:

  - Verify that the `username` parameter has been passed. This disallows an
    unauthenticated user from grabbing a list of all users on the instance. The
    `UsersFinder` class performs an exact match on the `username`, so we are
    guaranteed to get 0 or 1 users.
  - Verify that the resulting user (if any) is accessible to be viewed publicly
    by calling `can?(current_user, :read_user, user)`

20f679d6

24 Jun, 2017 3 commits
- Merge branch '34264-replace-settings-ci-cd-pipelines-with-settings-pipelines-in-docs' into 'master' · f0886918
  Marcia Ramos authored Jun 24, 2017
```
Resolve "Replace 'Settings ➔ CI/CD Pipelines' with 'Settings ➔ Pipelines' in docs"

Closes #34264

See merge request !12433
```
  f0886918
- Merge branch 'fix-profile-show-interpolation' into 'master' · 98b94cbf
  Phil Hughes authored Jun 24, 2017
```
Fix interpolation in app/views/profile/show.html/haml

See merge request !12439
```
  98b94cbf
- Fix interpolation in app/views/profile/show.html/haml · b7e6fb9b
  Nick Thomas authored Jun 24, 2017
  
  b7e6fb9b
23 Jun, 2017 35 commits
- Monty's version is better. · 6b86ce75
  sytses authored Jun 23, 2017
  
  6b86ce75
- Merge branch 'master' of gitlab.com:gitlab-org/gitlab-ce · b76c7038
  sytses authored Jun 23, 2017
  
  b76c7038
- Word MySQL stronger. · 67861a04
  sytses authored Jun 23, 2017
  
  67861a04
- Merge branch 'dm-requirements-txt-tilde' into 'master' · 2511c19f
  Grzegorz Bizon authored Jun 23, 2017
```
Don't match tilde and exclamation mark as part of requirements.txt package name

Closes #34166

See merge request !12431
```
  2511c19f
- Replace 'Settings ➔ CI/CD Pipelines' with 'Settings ➔ Pipelines' in docs · f9be772a
  bikebilly authored Jun 23, 2017
  
  f9be772a
- Merge branch 'tc-refactor-projects-finder-init-collection' into 'master' · c00f81d8
  Douwe Maan authored Jun 23, 2017
```
Add User#full_private_access? to check if user has access to all private groups & projects

Closes #31745

See merge request !12373
```
  c00f81d8
- Merge branch 'mk-fix-breadcrumb-order-33938' into 'master' · 1f3225a5
  Douwe Maan authored Jun 23, 2017
```
Fix breadcrumb order

Closes #33938

See merge request !12322
```
  1f3225a5
- Merge branch 'mk-fix-issue-34068' into 'master' · 788f5415
  Douwe Maan authored Jun 23, 2017
```
Fix 500 on failure to create a private group

Closes #34068

See merge request !12394
```
  788f5415
- Don't match tilde and exclamation mark as part of requirements.txt package name · 11e22835
  Douwe Maan authored Jun 23, 2017
  
  11e22835
- Fix 500 on create group failures · e3cb6198
  Michael Kozono authored Jun 22, 2017
```
Fixes #34068
```
  e3cb6198
- Add changelog entry · 466adeeb
  Michael Kozono authored Jun 20, 2017
  
  466adeeb
- Merge branch 'fix/gb/improve-updating-column-in-batches-helper' into 'master' · a4c81b64
  Yorick Peterse authored Jun 23, 2017
```
Improve `update_column_in_batches` migration helper

Closes #34064

See merge request !12350
```
  a4c81b64
- Merge branch '34219-extra-symbol-notifications-modal' into 'master' · 523eaace
  Phil Hughes authored Jun 23, 2017
```
Remove extra symbol in notifications modal

Closes #34219

See merge request !12417
```
  523eaace
- Merge branch 'commit-comments-limited-width' into 'master' · d4384dc1
  Annabel Dunstone Gray authored Jun 23, 2017
```
Limit the width of commit & snippet comment sections

Closes #20920

See merge request !12088
```
  d4384dc1
- Limit the width of commit & snippet comment sections · 9fca7b43
  Phil Hughes authored Jun 23, 2017
  
  9fca7b43
- Merge branch 'project-readme-limited-width' into 'master' · 473668b4
  Annabel Dunstone Gray authored Jun 23, 2017
```
Limit the width of project READMEs

Closes #20919

See merge request !12165
```
  473668b4
- Limit the width of project READMEs · 0b7d7df7
  Phil Hughes authored Jun 23, 2017
  
  0b7d7df7
- Remove extra symbol in notifications modal · 06058787
  Annabel Dunstone Gray authored Jun 23, 2017
  
  06058787
- Merge branch '33538-update-ci-dockerfile-now-that-chrome-headless-no-longer-in-beta' into 'master' · 6ff571aa
  Grzegorz Bizon authored Jun 23, 2017
```
Update QA Dockerfile to use stable Chrome package

Closes #33538

See merge request !12071
```
  6ff571aa
- Merge branch 'winh-promise-rejects-fail-tests' into 'master' · 801cf923
  Phil Hughes authored Jun 23, 2017
```
Make JavaScript tests fail for unhandled Promise rejections

Closes #33845 and #33623

See merge request !12264
```
  801cf923
- Make JavaScript tests fail for unhandled Promise rejections · 925eea26
  Winnie Hellmann authored Jun 23, 2017
  
  925eea26
- Add User#full_private_access? to check if user has Private access · b90f1098
  Toon Claes authored Jun 22, 2017
```
In CE only the admin has access to all private groups & projects. In EE also an
auditor can have full private access.

To overcome merge conflicts, or accidental incorrect access rights, abstract
this out in `User#full_private_access?`.

`User#admin?` now only should be used for admin-only features. For private
access-related features `User#full_private_access?` should be used.

Backported from gitlab-org/gitlab-ee!2199
```
  b90f1098
- Merge branch 'hot-reload' into 'master' · 9c7bf123
  Tim Zallmann authored Jun 23, 2017
```
hot reloading for .vue files

Closes #33729

See merge request !12180
```
  9c7bf123
- Merge branch '31574-bootstrap-form-builder' into 'master' · cf131aa4
  Phil Hughes authored Jun 23, 2017
```
Add bootstrap_form gem

See merge request !10985
```
  cf131aa4
- Merge branch '33992-mr-target-avatar' into 'master' · 0c126dc8
  Phil Hughes authored Jun 23, 2017
```
Add padding to target branch container

Closes #33992

See merge request !12353
```
  0c126dc8
- Merge branch 'fix-sidebar-scroll-jump' into 'master' · f76ed815
  Phil Hughes authored Jun 23, 2017
```
Remove layout nav from scroll calculation

Closes #33984

See merge request !12399
```
  f76ed815
- Merge branch '34095-permalinks' into 'master' · 182db09e
  Phil Hughes authored Jun 23, 2017
```
Fix offset for fixed nav

Closes #34095

See merge request !12365
```
  182db09e
- Fix offset for fixed nav · 588d5564
  Annabel Dunstone Gray authored Jun 23, 2017
  
  588d5564
- Merge branch 'notes-es-class-syntax' into 'master' · 61064006
  Tim Zallmann authored Jun 23, 2017
```
Refactor Notes into ES class syntax

See merge request !12254
```
  61064006
- Merge branch 'dm-unnecessary-top-padding' into 'master' · a625e0e4
  Sean McGivern authored Jun 23, 2017
```
Remove unnecessary top padding on group MR index

See merge request !12392
```
  a625e0e4
- Merge branch '34120-environment-detail-bug' into 'master' · 8fa464e6
  Phil Hughes authored Jun 23, 2017
```
Fix mobile environment detail view

Closes #34120

See merge request !12382
```
  8fa464e6
- Fix mobile environment detail view · 6695cd9d
  Annabel Dunstone Gray authored Jun 23, 2017
  
  6695cd9d
- Merge branch 'project-settings-container-width' into 'master' · f09aa6b7
  Annabel Dunstone Gray authored Jun 23, 2017
```
Added limited width container to project settings

See merge request !12045
```
  f09aa6b7
- Merge branch 'fix-dropdown-top-navbar-position-mobile' into 'master' · a4ca7e8b
  Annabel Dunstone Gray authored Jun 23, 2017
```
Fix dropdown position for the new button on mobile for the top navbar

Closes #34139

See merge request !12388
```
  a4ca7e8b
- Fix dropdown position for the new button on mobile for the top navbar · c79540c6
  Jose Ivan Vargas Lopez authored Jun 23, 2017
  
  c79540c6