- 09 Oct, 2019 1 commit
-
-
Kerri Miller authored
This method, #route_not_found, is executed as the final fallback for unrecognized routes (as the name might imply.) We want to avoid `#authenticate_user!` when calling `#route_not_found`; `#authenticate_user!` can, depending on the request format, return a 401 instead of redirecting to a login page. This opens a subtle security exploit where anonymous users will receive a 401 response when attempting to access a private repo, while a recognized user will receive a 404, exposing the existence of the private, hidden repo.
-
- 07 Oct, 2019 3 commits
-
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Bot authored
-
GitLab Bot authored
-
- 06 Oct, 2019 3 commits
-
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
- 05 Oct, 2019 1 commit
-
-
GitLab Bot authored
-
- 04 Oct, 2019 8 commits
-
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
- 03 Oct, 2019 7 commits
-
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
- 02 Oct, 2019 11 commits
-
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Bot authored
-
Marin Jankovski authored
-
GitLab Bot authored
-
Marin Jankovski authored
Fix private feature Elasticsearch leak Closes gitlab-ee#381 See merge request gitlab/gitlabhq!3457
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Bot authored
-
- 01 Oct, 2019 6 commits
-
-
GitLab Bot authored
-
GitLab Bot authored
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Bot authored
-
Mark Chao authored
Add spec to test different combinations.
-
Mark Chao authored
Add spec
-
