- 29 Aug, 2014 12 commits
-
-
Jacob Vosmaer authored
-
Jacob Vosmaer authored
This method existed to allow LDAP users to take over existing GitLab accounts if the part before the '@' of their LDAP email attribute matched the username of an existing GitLab user. I propose to disable this behavior in order to prevent unintended GitLab account takeovers. After this change it is still possible to take over an existing GitLab account with your LDAP credentials, as long as the GitLab account email address matches the LDAP user email address.
-
Jacob Vosmaer authored
The example LDAP configuration in gitlab.yml enables the allow_username_or_email_login setting. Because the effect of this setting is somewhat counterintuitive, I propose we make 'false' the example default. The settings initializer already sets this setting to 'false'.
-
Dmitriy Zaporozhets authored
Don't allow edit of system notes Fix #1412 See merge request !1052
-
Dmitriy Zaporozhets authored
Move cache setup to config/application.rb See merge request !1050
-
Dmitriy Zaporozhets authored
Improve issue ui Fix code overflow for description block See merge request !1051
-
Dmitriy Zaporozhets authored
Signed-off-by:Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
-
Dmitriy Zaporozhets authored
Signed-off-by: -
Dmitriy Zaporozhets authored
Visibility fix Fixes #1529 See merge request !1049
-
Dmitriy Zaporozhets authored
Signed-off-by: -
Dmitriy Zaporozhets authored
Signed-off-by: -
Jacob Vosmaer authored
Before this change we were trying to configure Rails.cache in an initializer. It seems that by the time the initializers are loaded, Rails.cache is already instantiated, so changing the settings does not achieve anything anymore. This was causing Rails to default to a file storage cache instead of the Redis cache, which in turn broke `rake cache:clear`.
-
- 28 Aug, 2014 21 commits
-
-
Job van der Voort authored
-
Jacob Vosmaer authored
Fix XSS issue When view blob as RAW make sure we allow only 2 kind of type: 'text/plain' and 'application/octet-stream' Fixes #1514 See merge request !1045
-
Dmitriy Zaporozhets authored
Use a ? after the $request_uri to perform a valid Redirect while cloning...
-
Dmitriy Zaporozhets authored
[refactor] Remove HAML eval for const strings.
-
Dmitriy Zaporozhets authored
Fix overflow in 'my projects' list
-
Dmitriy Zaporozhets authored
Mask password in import URL while importing.
-
Dmitriy Zaporozhets authored
Add search in textarea
-
Dmitriy Zaporozhets authored
Signed-off-by: -
Dmitriy Zaporozhets authored
Project home redesign * more focus for description and stars/forks * rename activity -> to project tab * put activity under tab: prepare place for README tab Fixes #1534. See merge request !1047
-
Dmitriy Zaporozhets authored
Signed-off-by: -
Dmitriy Zaporozhets authored
Signed-off-by: -
Dmitriy Zaporozhets authored
Signed-off-by: -
Dmitriy Zaporozhets authored
Signed-off-by: -
Dmitriy Zaporozhets authored
* more focus for description and stars/forks * rename activity -> to project tab * put activity under tab: prepare place for README tab Signed-off-by: -
Dmitriy Zaporozhets authored
Improve search output See merge request !1046
-
dreis authored
-
Andrew Kumanyaev authored
-
Dmitriy Zaporozhets authored
Signed-off-by: -
Dmitriy Zaporozhets authored
RAW feature Signed-off-by: -
-
Jacob Vosmaer authored
Delete invalid taggings during label migration
-
- 27 Aug, 2014 7 commits
-
-
James Brooks authored
-
Dmitriy Zaporozhets authored
Signed-off-by: -
uran authored
-
Jacob Vosmaer authored
-
Dmitriy Zaporozhets authored
Signed-off-by: -
Jacob Vosmaer authored
I'm feeling paranoid about the scope variables like redis_config_file get defined in. Hiding it in a block to limit the scope.
-
Jacob Vosmaer authored
-
