BigW Consortium Gitlab

  1. 04 May, 2017 1 commit
    • Display slash commands outcome when previewing Markdown · 45e4c665
      Rares Sfirlogea authored
      Remove slash commands from Markdown preview and display their outcome next to
      the text field.
      Introduce new "explanation" block to our slash commands DSL.
      Introduce optional "parse_params" block to slash commands DSL that allows to
      process a parameter before it is passed to "explanation" or "command" blocks.
      Pass path for previewing Markdown as "data" attribute instead of setting
      a variable on "window".
  2. 26 Apr, 2017 1 commit
  3. 26 Mar, 2017 1 commit
  4. 20 Mar, 2017 1 commit
  5. 13 Mar, 2017 1 commit
  6. 14 Feb, 2017 1 commit
  7. 07 Feb, 2017 1 commit
  8. 31 Dec, 2016 2 commits
  9. 30 Nov, 2016 1 commit
  10. 11 Aug, 2016 1 commit
  11. 01 Jul, 2016 1 commit
  12. 16 Jun, 2016 2 commits
  13. 14 Jun, 2016 1 commit
    • Forbid scripting for wiki files · 1cda245c
      Sean McGivern authored
      Wiki files (not pages - files in the repo) are just sent to the browser
      with whatever content-type the mime_types gem assigns to them based on
      their extension. As this is from the same domain as the GitLab
      application, this is an XSS vulnerability.
      
      Set a CSP forbidding all sources for scripting, CSS, XHR, etc. on these
      files.
  14. 09 Jun, 2016 1 commit
    • Hook up the updated `WikiLinkFilter` to the wiki controllers. · e6b1d166
      Timothy Andrew authored
      - Need to pass in a `page_slug` to the filter, so it can rewrite based
        on the current page (all links are rewritten to the level of the app root).
      - The earlier `markdown_preview` endpoint was at the level of the wiki.
        We need to know the current page (for rewriting, as above), so this
        commit moves the endpoint to the level of a wiki page.
      - Fix all tests
  15. 03 Jun, 2016 2 commits
  16. 26 May, 2016 1 commit
    • Split Markdown rendering & reference gathering · 86166d28
      Yorick Peterse authored
      This splits the Markdown rendering and reference extraction phases into
      two distinct code bases. The reference extraction phase no longer relies
      on the html-pipeline Gem (and any related code) and allows for
      extracting of references from multiple HTML nodes in a single pass. This
      means that if you want to extract user references from 200 comments you
      no longer need to run 200 times N number of queries, instead only a
      handful of queries may be needed.
  17. 29 Apr, 2016 1 commit
  18. 20 Apr, 2016 3 commits
  19. 30 Mar, 2016 1 commit
  20. 19 Mar, 2016 1 commit
  21. 03 Oct, 2015 1 commit
  22. 09 Sep, 2015 1 commit
  23. 02 Sep, 2015 1 commit
  24. 26 Aug, 2015 1 commit
  25. 26 Jun, 2015 2 commits
  26. 20 Apr, 2015 1 commit
  27. 07 Apr, 2015 1 commit
  28. 12 Mar, 2015 1 commit
  29. 03 Mar, 2015 1 commit
  30. 14 Feb, 2015 1 commit
    • Upgrade to Rails 4.1.9 · 76aad9b7
      Vinnie Okada authored
      Make the following changes to deal with new behavior in Rails 4.1.2:
      
      * Use nested resources to avoid slashes in arguments to path helpers.
  31. 03 Feb, 2015 1 commit
  32. 07 Jun, 2014 1 commit
  33. 05 May, 2014 1 commit
  34. 24 Apr, 2014 1 commit