- 20 6月, 2016 1 次提交
-
-
由 Dmitriy Zaporozhets 提交于
Signed-off-by: NDmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
-
- 18 6月, 2016 2 次提交
-
-
-
由 Paco Guzman 提交于
- As todos are created/updated inside the TodoService we repopulate the cache just there for both pending/done todos - Todos as mark as done from the TodosController we update cache there too - All the added methods are kept in the User class for cohesion
-
- 17 6月, 2016 7 次提交
-
-
由 Felipe Artur 提交于
-
由 James Lopez 提交于
-
由 Phil Hughes 提交于
Frontend doesnt use it
-
由 Phil Hughes 提交于
-
由 Phil Hughes 提交于
Based on feedback from !4502
-
由 Felipe Artur 提交于
-
由 Alejandro Rodríguez 提交于
-
- 16 6月, 2016 5 次提交
-
-
由 James Lopez 提交于
This reverts commit 13e37a3e.
-
由 James Lopez 提交于
-
由 Timothy Andrew 提交于
- Extract a duplicated `redirect_to` - Fix a typo: "token", not "certificate" - Have the "Expires at" datepicker be attached to a text field, not inline - Have both private tokens and personal access tokens verified in a single "authenticate_from_private_token" method, both in the application and API. Move relevant logic to `User#find_by_personal_access_token` - Remove unnecessary constants relating to API auth. We don't need a separate constant for personal access tokens since the param is the same as for private tokens.
-
由 Z.J. van de Weg 提交于
-
由 Zeger-Jan van de Weg 提交于
-
- 15 6月, 2016 11 次提交
-
-
由 James Lopez 提交于
-
由 Felipe Artur 提交于
-
由 Kamil Trzcinski 提交于
-
由 Phil Hughes 提交于
Closes #18634
-
由 James Lopez 提交于
-
由 Patricio Cano 提交于
-
由 James Lopez 提交于
-
由 James Lopez 提交于
-
由 James Lopez 提交于
-
由 James Lopez 提交于
adapted current services stuff to use new project import, plus fixes a few issues, updated routes, etc...
-
由 Kamil Trzcinski 提交于
-
- 14 6月, 2016 14 次提交
-
-
由 James Lopez 提交于
-
由 Felipe Artur 提交于
-
由 Kamil Trzcinski 提交于
-
由 Rémy Coutable 提交于
+ Move 'Edit Project/Group' out of membership-related partial + Show the access request buttons only to logged-in users + Put the request access buttons out of in a more visible button + Improve the copy in the #remove_member_message helper Signed-off-by: NRémy Coutable <remy@rymai.me>
-
由 Rémy Coutable 提交于
Signed-off-by: NRémy Coutable <remy@rymai.me>
-
由 Rémy Coutable 提交于
Factorize #request_access and #approve_access_request into a new AccessRequestActions controller concern Signed-off-by: NRémy Coutable <remy@rymai.me>
-
由 Rémy Coutable 提交于
Signed-off-by: NRémy Coutable <remy@rymai.me>
-
由 Kamil Trzcinski 提交于
-
由 James Lopez 提交于
-
由 Sean McGivern 提交于
Wiki files (not pages - files in the repo) are just sent to the browser with whatever content-type the mime_types gem assigns to them based on their extension. As this is from the same domain as the GitLab application, this is an XSS vulnerability. Set a CSP forbidding all sources for scripting, CSS, XHR, etc. on these files.
-
由 David Alexander 提交于
-
由 Phil Hughes 提交于
-
由 Phil Hughes 提交于
-
由 Phil Hughes 提交于
-