Commits · a08993f26f45a516efd1c1d61aa4364b12c02a96 · nexedi / gitlab-ce

03 Jan, 2019 6 commits

Update CI/CD variables help text · a08993f2

Thong Kuah authored Dec 19, 2018

Add hint about adding variables for Auto DevOps application variables
and link to More information

a08993f2

DRY up some functions in Auto-DevOps script · df6354b8
Thong Kuah authored Jan 03, 2019
```
- DRY up setting deploy name

- DRY up application_secret_name
```
df6354b8
Remove application secret on stopping environment · 1d41e587
Thong Kuah authored Dec 19, 2018

1d41e587

Simplify bash function · 23b6a2ae

Thong Kuah authored Jan 03, 2019

Use --from-env-file with bash process substitution

We still need bash as process substition (`<()`) is not available in sh

23b6a2ae

Solve multi word CI variables not quoted properly · dddbc353

Thong Kuah authored Dec 18, 2018

ie. fix below quoting issue:

```
kubectl create secret -n project-with-autodevops-900057eb1ce34399-77 \
  generic production-secret \
  '--from-literal=OPTIONAL_MESSAGE=You' can see this secret \
  -o yaml --dry-run
```

With fix, it should be generating:

```
kubectl create secret -n project-with-autodevops-900057eb1ce34399-77 \
  generic production-secret \
  --from-literal 'OPTIONAL_MESSAGE=You can see this secret' \
  -o yaml --dry-run
```

Call via bash -c, instead of assuming bash

The shell is /bin/sh, so we cannot asssume bash. Hence we use `bash -c`

bash is installed for deploy jobs in a prior step

dddbc353

Create K8S_SECRET_* CI variables as a K8s Secret · 4b92b550

Thong Kuah authored Dec 12, 2018

Find any CI variables from `env` which has a prefix. If there are any
such CI variables, strip prefix from variable name then create a generic
Kubernetes secret containing all these CI variables as key-value pairs.

Also, Pass in secretname to application container

The secretname may be present, if nil, the chart does nothing. If
present, the chart will load the key-value pairs from the secret into
the application container. See
https://gitlab.com/charts/auto-deploy-app/blob/master/README.md#configuration

4b92b550

02 Jan, 2019 26 commits
- Merge branch 'ccr/49289_milestone_link' into 'master' · a4833f6f
  Mike Greiling authored Jan 02, 2019
```
Add project milestone link

Closes #49289

See merge request gitlab-org/gitlab-ce!22552
```
  a4833f6f
- Merge branch 'deprecated-insert-sql' into 'master' · 2d7c3dbf
  Robert Speicher authored Jan 02, 2019
```
Fix deprecation: insert_sql is deprecated and will be removed

See merge request gitlab-org/gitlab-ce!23944
```
  2d7c3dbf
- Merge branch 'deprecated-redirect-back' into 'master' · 6a8b89d9
  Robert Speicher authored Jan 02, 2019
```
Fix deprecation: redirect_to :back is deprecated

See merge request gitlab-org/gitlab-ce!23943
```
  6a8b89d9
- Fix deprecation: redirect_to :back is deprecated · fbdb4635
  Jasper Maes authored Dec 17, 2018
  
  fbdb4635
- Fix deprecation: insert_sql is deprecated and will be removed · 01185be0
  Jasper Maes authored Dec 19, 2018
  
  01185be0
- Merge branch 'mk/avoid-extra-storage-perm-and-query' into 'master' · bf38936f
  Stan Hu authored Jan 02, 2019
```
Avoid extra storage bucket perm and query

See merge request gitlab-org/gitlab-ce!23995
```
  bf38936f
- Merge branch '55266-fix-incorrect-due-date-parsing' into 'master' · 33a9c35b
  Clement Ho authored Jan 02, 2019
```
Use `parsePikadayDate` to parse due date string

Closes #55266

See merge request gitlab-org/gitlab-ce!24045
```
  33a9c35b
- Merge branch '18667-handle-push-opts' into 'master' · ca6fbe8a
  Douwe Maan authored Jan 02, 2019
```
Handle 'git push -o ci.skip'

Closes #18667

See merge request gitlab-org/gitlab-ce!15643
```
  ca6fbe8a
- Merge branch 'update-gitlab-runner-helm-chart-to-0-1-43' into 'master' · 28cffb9f
  Kamil Trzciński authored Jan 02, 2019
```
Update gitlab runner helm chart to 0.1.43

See merge request gitlab-org/gitlab-ce!24083
```
  28cffb9f
- Merge branch 'blackst0ne-bump-rails-cve-2018-16476' into 'master' · 453bcfb3
  Grzegorz Bizon authored Jan 02, 2019
```
Bump Ruby on Rails to 5.0.7.1

See merge request gitlab-org/gitlab-ce!23396
```
  453bcfb3
- Merge branch 'master' of dev.gitlab.org:gitlab/gitlabhq · 191f461b
  John Jarvis authored Jan 02, 2019
  
  191f461b
- Merge branch '54206-show-the-activity-filter-dropdown-in-discussion-tab-only' into 'master' · 5494f09a
  Kushal Pandya authored Jan 02, 2019
```
Resolve "Show the activity filter dropdown in discussion tab only, show all discussions always in changes tab"

Closes #54206

See merge request gitlab-org/gitlab-ce!24082
```
  5494f09a
- Merge branch '55369-update-milestone-sort-to-say-say-milestone-due-date' into 'master' · 1a83d938
  Sean McGivern authored Jan 02, 2019
```
Resolve "Update `Milestone` sort to say say `Milestone due date`"

Closes #55369

See merge request gitlab-org/gitlab-ce!24080
```
  1a83d938
- Merge branch 's3-directories-get' into 'master' · f93f09e7
  Kamil Trzciński authored Jan 02, 2019
```
Use directories.new when getting S3 directory

Closes gitlab-com/gl-infra/infrastructure#5807

See merge request gitlab-org/gitlab-ce!23981
```
  f93f09e7
- Merge branch '55755-user-activity-is-stuck-loading-when-there-is-none' into 'master' · bb444211
  Kushal Pandya authored Jan 02, 2019
```
Resolve "User activity is stuck loading when there is none"

Closes #55755

See merge request gitlab-org/gitlab-ce!24063
```
  bb444211
- Resolve "User activity is stuck loading when there is none" · 86b60538
  Martin Wortschack authored Jan 02, 2019
  
  86b60538
- Merge branch 'sh-bump-qa-image-ruby-2.5' into 'master' · dab5eaf8
  Grzegorz Bizon authored Jan 02, 2019
```
Upgrade GitLab QA image to Ruby 2.5

See merge request gitlab-org/gitlab-ce!24091
```
  dab5eaf8
- Merge branch 'security-label-xss' into 'master' · 90e1f10f
  John Jarvis authored Jan 02, 2019
```
[master] Escape html entities when no label found

See merge request gitlab/gitlabhq!2706
```
  90e1f10f
- Merge branch 'security-master-secret-ci-variables-exposed' into 'master' · a7470017
  John Jarvis authored Jan 02, 2019
```
[master] Secret CI variables can exposed by creating a tag with the same name as an existing protected branch

See merge request gitlab/gitlabhq!2596
```
  a7470017
- Merge branch 'security-master-url-rel' into 'master' · e035e469
  John Jarvis authored Jan 02, 2019
```
[master] Set URL rel attribute for broken URLs

See merge request gitlab/gitlabhq!2695
```
  e035e469
- Merge branch 'security-todos_not_redacted_for_guests' into 'master' · 1bc6dc28
  John Jarvis authored Jan 02, 2019
```
[master] Security todos not redacted for guests

See merge request gitlab/gitlabhq!2697
```
  1bc6dc28
- Merge branch '55838-remove-gem-install-bundler-from-docker-based-ruby-environments' into 'master' · a0a12ee5
  Sean McGivern authored Jan 02, 2019
```
Remove gem install bundler from Docker-based Ruby environments

Closes #55838

See merge request gitlab-org/gitlab-ce!24093
```
  a0a12ee5
- Merge branch 'qa-fix-logging-find-element' into 'master' · 5c1eb9ab
  Ramya Authappan authored Jan 02, 2019
```
log text_filter arg of find_element

Closes gitlab-org/quality/nightly#52

See merge request gitlab-org/gitlab-ce!24064
```
  5c1eb9ab
- Made discussion filters only visible in merge request discussions tab · 92eff44f
  Constance Okoghenun authored Jan 02, 2019
```
Discussion filters will be hidden on Commits, Pipelines, and
Changes tabs on merge requests page.

This does not affect its behavior on issues page
```
  92eff44f
- Merge branch 'patch-37' into 'master' · dcc17872
  Evan Read authored Jan 02, 2019
```
Updating link to correctly point to environment scope docs

See merge request gitlab-org/gitlab-ce!24023
```
  dcc17872
- Merge branch 'patch-37' into 'master' · 285da8d0
  Evan Read authored Jan 02, 2019
```
Update mysql.md - broken link

See merge request gitlab-org/gitlab-ce!23988
```
  285da8d0
01 Jan, 2019 8 commits
- Merge branch '53656-explain-how-to-add-custom-kaniko-certificate' into 'master' · 27e7625e
  Evan Read authored Jan 01, 2019
```
Explain how to use kaniko with a registry with a custom certificate

Closes #53656

See merge request gitlab-org/gitlab-ce!23875
```
  27e7625e
- Merge branch 'master' of dev.gitlab.org:gitlab/gitlabhq · 638582e0
  John Jarvis authored Jan 01, 2019
  
  638582e0
- Merge branch 'security-53543-user-keeps-access-to-mr-issue-when-removed-from-team' into 'master' · ec4ade50
  John Jarvis authored Jan 01, 2019
```
[master] Adds validation to check if user can read project

See merge request gitlab/gitlabhq!2645
```
  ec4ade50
- Merge branch 'security-bvl-fix-cross-project-mr-exposure' into 'master' · 3fca973e
  John Jarvis authored Jan 01, 2019
```
[master] Validate projects in MR build service

See merge request gitlab/gitlabhq!2678
```
  3fca973e
- Merge branch 'security-refs-available-to-project-guest' into 'master' · 0058c97a
  John Jarvis authored Jan 01, 2019
```
[master] Project guests no longer are able to see refs page

See merge request gitlab/gitlabhq!2685
```
  0058c97a
- Merge branch 'security-fix-ssrf-import-url-remote-mirror' into 'master' · e4dabec8
  John Jarvis authored Jan 01, 2019
```
[master] SSRF - Scan Internal Ports and GCP/AWS endpoints

See merge request gitlab/gitlabhq!2689
```
  e4dabec8
- Merge branch 'security-48259-private-snippet' into 'master' · 8f461ef7
  John Jarvis authored Jan 01, 2019
```
[master] Prevent private snippet from being embeddable

See merge request gitlab/gitlabhq!2692
```
  8f461ef7
- Merge branch 'security-54377-label-milestone-name-xss' into 'master' · c684dd63
  John Jarvis authored Jan 01, 2019
```
[master] Escape label and milestone titles to prevent XSS in GFM autocomplete

See merge request gitlab/gitlabhq!2693
```
  c684dd63