- 26 Feb, 2020 1 commit
-
-
Alain Takoudjou authored
From gitlab 8.12 there is new CI job permissions model which only accept login from ci token for running job. Then the access is revoked after the job is finished. In Nexedi, when have a lot of URLs which rely on gitlab-ci-token and project-runners-token, so we need to re-allow access else access to all those URL will be refused. More info are here: https://docs.gitlab.com/ee/user/project/new_ci_build_permissions_model.html#before-gitlab-8-12
-
- 10 Feb, 2020 6 commits
-
-
Kirill Smelkov authored
TODO detect whether request comes from China and only then show ICP (?).
-
Kirill Smelkov authored
We show in small font size the same info that is shown on sign_in page: "GitLab Nexedi Edition", "About GitLab" and "About Nexedi" This is good to have and hereby-introduced about-footer area will be also used in the next patch for ICP too. XXX placement of .about-footer to be near bottom is done not very correctly.
-
Kirill Smelkov authored
-
Kirill Smelkov authored
The default was switched to HTTP in the previous patch, but let's completely remove SSH option - we support only HTTP for git fetch/push. Conflicts: app/views/shared/_clone_panel.html.haml
-
Kirill Smelkov authored
Both fetch and push are possible over https, which is selected by http if gitlab was configured to use https in external url. This way to reduce security vectors and possible ways to interact with gitlab we use https only without ssh at all.
-
Kirill Smelkov authored
= GitLab Community Edition + Nexedi patches
-
- 07 Feb, 2020 1 commit
-
-
Alain Takoudjou authored
-
- 08 Nov, 2017 2 commits
-
-
Winnie Hellmann authored
-
Winnie Hellmann authored
[ci skip]
-
- 07 Nov, 2017 2 commits
-
-
Douwe Maan authored
(backport) Include X-Content-Type-Options (XCTO) header into API responses See merge request gitlab/gitlabhq!2216 (cherry picked from commit 5fcb214f8527b3d58be1a833a596d01b1bf6119e) 40c6c9f4 Include X-Content-Type-Options (XCTO) header into API responses
-
Douwe Maan authored
eplace SSRF resolver with Addrinfo.getaddrinfo to include alternative localhost versions (9-5) See merge request gitlab/gitlabhq!2221 (cherry picked from commit 53cc25eb3d45c782b5085524a8976f034ef18781) 96555882 Replace SSRF resolver with Addrinfo.getaddrinfo to include alternative localhost versions
-
- 16 Oct, 2017 2 commits
-
-
Jarka Kadlecova authored
-
Jarka Kadlecova authored
[ci skip]
-
- 14 Oct, 2017 5 commits
-
-
Stan Hu authored
3435 backport for 9.5 See merge request gitlab/gitlabhq!2207
-
Stan Hu authored
-
Rémy Coutable authored
fix transient user_edits_files_spec failures See merge request gitlab-org/gitlab-ce!14324
-
Stan Hu authored
-
Brian Neel authored
-
- 13 Oct, 2017 1 commit
-
-
micael.bergeron authored
-
- 12 Oct, 2017 7 commits
-
-
Robert Speicher authored
-
Robert Speicher authored
[10.0 CE] Prevent "Related Issues" from leaking confidential issues See merge request gitlab/gitlabhq!2193
-
Douwe Maan authored
Move project repositories between namespaces when renaming users (9.5) See merge request gitlab/gitlabhq!2202
-
Phil Hughes authored
Escape user name in filtered search bar See merge request gitlab/gitlabhq!2195
-
Douwe Maan authored
[9.5] Prevent a persistent XSS in user-provided markup See merge request gitlab/gitlabhq!2203
-
Kamil Trzciński authored
Treat newlines as separators for pipeline emails service Closes #37759 See merge request gitlab-org/gitlab-ce!14250
-
Robert Speicher authored
Fix arbitrary redirect location vulnerability See merge request gitlab/gitlabhq!2192
-
- 10 Oct, 2017 1 commit
-
-
Robert Speicher authored
Fix arbitrary redirect location vulnerability See merge request gitlab/gitlabhq!2192
-
- 04 Oct, 2017 3 commits
-
-
Jose Ivan Vargas authored
-
Jose Ivan Vargas authored
[ci skip]
-
Filipa Lacerda authored
Fix fork button being disabled for users who can fork to group Closes #38462 See merge request gitlab-org/gitlab-ce!14551
-
- 03 Oct, 2017 3 commits
-
-
Jose Ivan Vargas authored
-
Jose Ivan Vargas authored
[ci skip]
-
Robert Speicher authored
Fix gitlab rake:import:repos task for 9.5.x See merge request gitlab-org/gitlab-ce!14639
-
- 02 Oct, 2017 1 commit
-
-
Stan Hu authored
This backports !14597 for the 9.5.x branch. Because of a change in GitLab 9.5.4 to prevent users from assuming control of a repository already on disk, the import task broke. Imports would fail with the message, "There is already a repository with that name on disk". This change skips the validation when the import is done from the command-line. Closes #37682
-
- 29 Sep, 2017 2 commits
-
-
Jose Ivan Vargas authored
-
Jose Ivan Vargas authored
[ci skip]
-
- 28 Sep, 2017 3 commits
-
-
Jose Ivan Vargas Lopez authored
Handle error when fetching ref for MR with deleted source branch See merge request gitlab-org/gitlab-ce!14550
-
Robert Speicher authored
Upgrade Nokogiri because of CVE-2017-9050 See merge request gitlab-org/gitlab-ce!14427
-
Annabel Dunstone Gray authored
Update "x/x discussions resolved" checkmark icon to be green when all discussions resolved Closes #37465 See merge request gitlab-org/gitlab-ce!14255
-