- 01 11月, 2016 1 次提交
-
-
由 Yar 提交于
It is not possible to search for a user by his secondary email address in the Users search bar in the admin interface(/admin/users). A use-case could be that an admin wants to remove a specific secondary email address of an user, because it interferes with another user. Issue #23761 This commit adds ability to search not only by main email, but also by any secondary email in the admin interface.
-
- 25 10月, 2016 1 次提交
-
-
由 David Wagner 提交于
They were Rails' default and are unnecessarily overridden. Signed-off-by: NDavid Wagner <david@marvid.fr>
-
- 05 10月, 2016 1 次提交
-
-
由 Yorick Peterse 提交于
This refactors Gitlab::Identifier so it uses fewer queries and is actually tested. Queries are reduced by caching the output as well as using 1 query (instead of 2) to find a user using an SSH key.
-
- 01 9月, 2016 1 次提交
-
-
由 Felipe Artur 提交于
-
- 25 8月, 2016 1 次提交
-
-
由 Paco Guzman 提交于
-
- 17 8月, 2016 1 次提交
-
-
由 Paco Guzman 提交于
Use just SQL to check is a user can admin_issue on a project Tradeoff - we duplicate how we check admin_issue in a SQL relation in the Ability class
-
- 12 8月, 2016 1 次提交
-
- 09 8月, 2016 1 次提交
-
-
由 tiagonbotelho 提交于
-
- 04 8月, 2016 1 次提交
-
- 02 8月, 2016 1 次提交
-
-
由 Keith Pope 提交于
-
- 20 7月, 2016 1 次提交
-
-
由 Robert Speicher 提交于
Prior, when providing a `min_access_level` parameter to this method, we called `Gitlab::Access.values` instead of `all_values`, mistakenly omitting the `OWNER` level. Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/19878
-
- 19 7月, 2016 4 次提交
-
-
由 Patricio Cano 提交于
-
由 Patricio Cano 提交于
Refactor and rename `restricted_signup_domains` to `domain_whitelist` to better conform to its behavior and newly introduced behavior.
-
由 Patricio Cano 提交于
-
由 Patricio Cano 提交于
-
- 15 7月, 2016 1 次提交
-
-
由 Kamil Trzcinski 提交于
-
- 12 7月, 2016 1 次提交
-
-
由 Robert Speicher 提交于
-
- 08 7月, 2016 1 次提交
-
-
由 Dravere 提交于
As requested by the issue #14508 this adds an option in the application settings to set newly registered users by default as external. The default setting is set to false to stay backward compatible.
-
- 24 6月, 2016 1 次提交
-
-
由 Rémy Coutable 提交于
The issue was with the `User#groups` and `User#projects` associations which goes through the `User#group_members` and `User#project_members`. Initially I chose to use a secure approach by storing the requester's user ID in `Member#created_by_id` instead of `Member#user_id` because I was aware that there was a security risk since I didn't know the codebase well enough. Then during the review, we decided to change that and directly store the requester's user ID into `Member#user_id` (for the sake of simplifying the code I believe), meaning that every `group_members` / `project_members` association would include the requesters by default... My bad for not checking that all the `group_members` / `project_members` associations and the ones that go through them (e.g. `Group#users` and `Project#users`) were made safe with the `where(requested_at: nil)` / `where(members: { requested_at: nil })` scopes. Now they are all secure. Signed-off-by: NRémy Coutable <remy@rymai.me>
-
- 07 6月, 2016 8 次提交
-
-
由 Lin Jen-Shin 提交于
Feedback from: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/4404#note_12301563
-
由 Lin Jen-Shin 提交于
-
由 Lin Jen-Shin 提交于
Feedback from: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/4404#note_12194552
-
由 Lin Jen-Shin 提交于
Feedback from: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/4404#note_12194489
-
由 Lin Jen-Shin 提交于
Feedback from: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/4404#note_12194471
-
由 Lin Jen-Shin 提交于
-
- 06 6月, 2016 1 次提交
-
-
由 Timothy Andrew 提交于
- To hold registrations from U2F devices, and to authenticate them. - Previously, `User#two_factor_enabled` was aliased to the `otp_required_for_login` column on `users`. - This commit changes things a bit: - `User#two_factor_enabled` is not a method anymore - `User#two_factor_enabled?` checks both the `otp_required_for_login` column, as well as `U2fRegistration`s - Change all instances of `User#two_factor_enabled` to `User#two_factor_enabled?` - Add the `u2f` gem, and implement registration/authentication at the model level.
-
- 03 6月, 2016 2 次提交
-
-
由 James Lopez 提交于
This reverts commit 3e991230.
-
由 James Lopez 提交于
# Conflicts: # app/models/project.rb
-
- 28 5月, 2016 1 次提交
-
-
由 DJ Mountney 提交于
-
- 17 5月, 2016 1 次提交
-
-
由 Felipe Artur 提交于
-
- 11 5月, 2016 2 次提交
-
-
由 Sean McGivern 提交于
-
由 Sean McGivern 提交于
`User#starred_projects` doesn't perform any visibility checks. This has a couple of problems: 1. It assumes a user can always view all of their starred projects in perpetuity (project not changed to private, access revoked, etc.). 2. It assumes that we'll only ever allow a user to star a project they can view. This is currently the case, but bugs happen. Add `User#viewable_starred_projects` to filter the starred projects by those the user either has explicit access to, or are public or internal. Then use that in all places where we list the user's starred projects.
-
- 10 5月, 2016 2 次提交
-
-
由 Zeger-Jan van de Weg 提交于
-
由 Jeroen van Baarsen 提交于
In 8278b763 the default behaviour of annotation has changes, which was causing a lot of noise in diffs. We decided in #17382 that it is better to get rid of the whole annotate gem, and instead let people look at schema.rb for the columns in a table. Fixes: #17382
-
- 01 4月, 2016 1 次提交
-
-
由 Zeger-Jan van de Weg 提交于
-
- 15 3月, 2016 1 次提交
-
-
由 Rémy Coutable 提交于
This reverts commit 01160fc0, reversing changes made to 4bff9daf.
-
- 14 3月, 2016 2 次提交
-
-
由 Zeger-Jan van de Weg 提交于
Also incorporates the review into this, mainly spec changes.
-
由 Zeger-Jan van de Weg 提交于
The user has the rights of a public user execpt it can never create a project, group, or team. Also it cant view internal projects.
-