- 09 Nov, 2017 1 commit
-
-
Douwe Maan authored
Include X-Content-Type-Options (XCTO) header into API responses See merge request gitlab/gitlabhq!2211 (cherry picked from commit 6c818e77f2abeef2dd7b17a269611b018701fa79) e087e075 Include X-Content-Type-Options (XCTO) header into API responses
-
- 02 Nov, 2017 1 commit
-
-
Douwe Maan authored
-
- 22 Oct, 2017 1 commit
-
-
Travis Miller authored
-
- 12 Oct, 2017 1 commit
-
-
Guilherme Vieira authored
-
- 13 Sep, 2017 1 commit
-
-
Stan Hu authored
-
- 07 Sep, 2017 3 commits
- 06 Sep, 2017 2 commits
-
-
blackst0ne authored
-
Grzegorz Bizon authored
-
- 04 Aug, 2017 1 commit
-
-
Bob Van Landuyt authored
-
- 02 Aug, 2017 2 commits
-
-
Douwe Maan authored
-
Eric authored
-
- 27 Jul, 2017 1 commit
-
-
Rémy Coutable authored
Signed-off-by: Rémy Coutable <remy@rymai.me>
-
- 25 Jul, 2017 1 commit
-
-
Oswaldo Ferreira authored
-
- 21 Jul, 2017 1 commit
-
-
Felipe Artur authored
-
- 19 Jul, 2017 1 commit
-
-
Shinya Maeda authored
-
- 28 Jun, 2017 1 commit
-
-
Timothy Andrew authored
- Declaring an endpoint's scopes in a `before` block has proved to be unreliable. For example, if we're accessing the `API::Users` endpoint - code in a `before` block in `API::API` wouldn't be able to see the scopes set in `API::Users` since the `API::API` `before` block runs first. - This commit moves these declarations to the class level, since they don't need to change once set.
-
- 08 Jun, 2017 3 commits
-
-
DJ Mountney authored
Restrict API X-Frame-Options to same origin See merge request !2103
-
DJ Mountney authored
Ran: - git format-patch v9.2.2..v9.2.5 --stdout > patchfile.patch - git checkout -b 9-2-5-security-patch origin/v9.2.2 - git apply patchfile.patch - git commit - [Got the sha ref for the commit] - git checkout -b upstream-9-2-security master - git cherry-pick <SHA of the patchfile commit> - [Resolved conflicts] - git cherry-pick --continue
-
DJ Mountney authored
Ran: - git format-patch v9.2.2..v9.2.5 --stdout > patchfile.patch - git checkout -b 9-2-5-security-patch origin/v9.2.2 - git apply patchfile.patch - git commit - [Got the sha ref for the commit] - git checkout -b upstream-9-2-security master - git cherry-pick <SHA of the patchfile commit> - [Resolved conflicts] - git cherry-pick --continue
-
- 06 Jun, 2017 1 commit
-
-
Mark Fletcher authored
* Meld the following disparate endpoints: * `/projects/:id/events` * `/events` * `/users/:id/events` + Add result filtering to the above endpoints: * action * target_type * before and after dates
-
- 31 May, 2017 1 commit
-
-
Alejandro Rodríguez authored
-
- 30 May, 2017 1 commit
-
-
Shinya Maeda authored
-
- 25 May, 2017 1 commit
-
-
Ruben Davila authored
There was a race condition issue when the application was generating an email and was using a language that was previously being used in other request.
-
- 04 May, 2017 2 commits
-
-
Valery Sizov authored
-
Ruben Davila authored
-
- 22 Mar, 2017 1 commit
-
-
Grzegorz Bizon authored
-
- 07 Mar, 2017 1 commit
-
-
Timothy Andrew authored
- As opposed to the issue `id` that was previously being used. - This brings the API routes closer to the web interface's routes. - This is specific to API v4.
-
- 06 Mar, 2017 4 commits
-
-
Tiago Botelho authored
-
Pawel Chojnacki authored
-
Pawel Chojnacki authored
-
Z.J. van de Weg authored
Fixes gitlab-org/gitlab-ce#28515 [ci skip]
-
- 03 Mar, 2017 1 commit
-
-
Toon Claes authored
The `projects/:id/pipelines` exposed a lot of extra details that are superfluous and it was taking extra resources to fetch them. To get more details about a pipeline, use `projects/:id/pipelines/:pipeline_id`.
-
- 02 Mar, 2017 3 commits
-
-
Jarka Kadlecova authored
-
Toon Claes authored
Use strings for the ApplicationSetting properties: - restricted_visibility_levels - default_project_visibility - default_snippet_visibility - default_group_visibility
-
Toon Claes authored
-
- 28 Feb, 2017 2 commits
-
-
Simon Vocella authored
-
Robert Schilling authored
-
- 24 Feb, 2017 1 commit
-
-
Robert Schilling authored
-