1. 18 Mar, 2021 5 commits
    • Luke Duncalfe's avatar
      Merge branch... · 0bee2780
      Luke Duncalfe authored
      Merge branch '262086-user-availability-allow-users-to-schedule-un-setting-of-their-status-values-fe' into 'master'
      
      User Availability - Allow users to schedule un-setting of their status
      
      See merge request gitlab-org/gitlab!56649
      0bee2780
    • Brandon Labuschagne's avatar
      Add clear user status dropdown · c07e57bd
      Brandon Labuschagne authored
      This dropdown gets added to the set user
      status modal. It allows a user the option
      to set a predefined range to clear their
      status.
      c07e57bd
    • Luke Duncalfe's avatar
      Merge branch '13984-graphql-auth' into 'master' · cebb9a36
      Luke Duncalfe authored
      GraphQL: Replace homecooked Authorize logic with gem auth [RUN AS-IF-FOSS]
      
      See merge request gitlab-org/gitlab!40088
      cebb9a36
    • charlie ablett's avatar
      Replace Authorize instrument with gem auth · 8d7a47f8
      charlie ablett authored
      This changes our GraphQL code to use the built-in `#authorize` methods
      to handle permissions.
      
      We originally implemented this functionality with a field-extension,
      but this is no longer necessary. This commit replaces that unnecessary
      field extension with implementations of `BaseObject#authorize` that
      use our policy framework.
      
      Significant changes included here:
      
      - field authorization now works as per the library specification: it
        authorizes against the current object, not the resolved value.
        To apply permissions to the resolved value, use the type permissions.
      - we allow resolvers to do the same (opt-in).
      - we extend authorization to enums (currently no enums use
        authorization).
      
      Note on enums:
      We don't actually have any authorization on enums, but we need to detect
      that efficiently. By supporting `ObjectAuthorization`, we can skip
      redaction now, and support it later (if we add enum members that require
      special authorization to see).
      
      Removals:
      
      - The ManualAuthorization temporary class
      - The synchronized_object method on BaseResolver
      - Field.authorize DSL method
      
      Changes:
      
      The error raised when there is no auth becomes an internal server
      error (ConfigurationError) since it cannot be caused by the client,
      and represents a programming mistake.
      
      The board issue move mutation has unnecessary logic removed, and the
      test for this is adjusted to verify the correctness of this change.
      Co-authored-by: default avatarAlex Kalderimis <akalderimis@gitlab.com>
      Co-authored-by: default avatarCharlie Ablett <cablett@gitlab.com>
      8d7a47f8
    • Luke Duncalfe's avatar
      Merge branch '16950_rework_syntax_highlighting' into 'master' · 6053a84f
      Luke Duncalfe authored
      Update syntax highlighting logic [RUN ALL RSPEC] [RUN AS-IF-FOSS]
      
      See merge request gitlab-org/gitlab!56108
      6053a84f
  2. 17 Mar, 2021 35 commits