- 10 May, 2017 2 commits
-
-
Rémy Coutable authored
Use the EnforcedStyleForMultiline: no_comma option. Signed-off-by: Rémy Coutable <remy@rymai.me>
-
Bob Van Landuyt authored
-
- 26 Apr, 2017 1 commit
-
-
Timothy Andrew authored
- Currently, (for example) admins can't delete snippets for blocked users, which is an unexpected limitation. - We modify `authenticate!` to conduct the `access_api` policy check against the `initial_current_user`, instead of the user being impersonated. - Update CHANGELOG for !10842
-
- 09 Apr, 2017 1 commit
-
-
blackst0ne authored
-
- 27 Mar, 2017 1 commit
-
-
Toon Claes authored
In API V4 all endpoints were changed so Merge Requests and Issues should be referred by iid, instead of id. Except the /notes endpoint was forgotten. So change the endpoints from: - /projects/:id/issues/:issue_id/notes - /projects/:id/merge_requests/:merge_request_id/notes To: - /projects/:id/issues/:issue_iid/notes - /projects/:id/merge_requests/:merge_request_iid/notes For Project Snippets nothing changes.
-
- 22 Mar, 2017 1 commit
-
-
Grzegorz Bizon authored
-
- 09 Mar, 2017 2 commits
-
-
http://jneen.net/ authored
-
http://jneen.net/ authored
to make sure we mean the global permissions
-
- 07 Mar, 2017 2 commits
-
-
Timothy Andrew authored
- As opposed to the `id` that was previously being used. - This brings the API routes closer to the web interface's routes. - This is specific to API v4.
-
Timothy Andrew authored
- As opposed to the issue `id` that was previously being used. - This brings the API routes closer to the web interface's routes. - This is specific to API v4.
-
- 06 Mar, 2017 2 commits
-
-
Pawel Chojnacki authored
-
Adam Niedzielski authored
-
- 03 Mar, 2017 2 commits
-
-
Toon Claes authored
The query parameter `membership` should be more self-explaining.
-
Oswaldo Ferreira authored
-
- 02 Mar, 2017 3 commits
-
-
Toon Claes authored
Add `visibility` & `visibility=` methods to the `Gitlab::VisibilityLevel` module so the `visibility_level` can be get/set with a string value.
-
Toon Claes authored
Instead of exposing the VisibilityLevel as Integer, expose it as String `visibility` for Project and ProjectSnippet. Filter queries also accept the `visibility` as String instead of `visibility_level` as Integer. Also remove the `public` boolean.
-
Mark Fletcher authored
- Also remove a redundant test
-
- 23 Feb, 2017 2 commits
-
-
Oswaldo authored
-
Douwe Maan authored
-
- 22 Feb, 2017 1 commit
-
-
Andre Guedes authored
-
- 21 Feb, 2017 2 commits
-
-
Douwe Maan authored
-
Oswaldo Ferreira authored
-
- 20 Feb, 2017 1 commit
-
-
Robert Schilling authored
-
- 14 Feb, 2017 1 commit
-
-
Toon Claes authored
It consolidates these endpoints: - /projects - /projects/owned - /projects/visible - /projects/starred - /projects/all Into the /projects endpoint using query parameters.
-
- 03 Feb, 2017 2 commits
-
-
Robert Schilling authored
-
Adam Pahlevi authored
add complete changelog for !8949
-
- 23 Jan, 2017 1 commit
-
-
Robert Speicher authored
Ensure that only privileged users can access merge requests in the API See merge request !2053
-
- 19 Jan, 2017 2 commits
-
-
Kamil Trzcinski authored
-
Kamil Trzcinski authored
-
- 18 Jan, 2017 1 commit
-
-
Ruben Davila authored
New endpoints are: POST :project_id/(issues|merge_requests)/(:issue_id|:merge_request_id)/time_estimate" POST :project_id/(issues|merge_requests)/(:issue_id|:merge_request_id)/reset_time_estimate" POST :project_id/(issues|merge_requests)/(:issue_id|:merge_request_id)/add_spent_time" POST :project_id/(issues|merge_requests)/(:issue_id|:merge_request_id)/reset_spent_time" GET :project_id/(issues|merge_requests)/(:issue_id|:merge_request_id)/time_stats"
-
- 15 Jan, 2017 1 commit
-
-
Robert Schilling authored
-
- 04 Jan, 2017 1 commit
-
-
Lin Jen-Shin authored
* We realized that headers were not set whenever we give 204 because `render_api_error!` doesn't preserve the headers. * We also realized that `update_runner_info` would be called in POST /builds/register every time therefore runner is updated every time, ticking the queue, making this last_update didn't work very well, and the test would be failing due to that.
-
- 23 Dec, 2016 1 commit
-
-
Rémy Coutable authored
Signed-off-by: Rémy Coutable <remy@rymai.me>
-
- 21 Dec, 2016 2 commits
-
-
Markus Koller authored
This adds counters for build artifacts and LFS objects, and moves the preexisting repository_size and commit_count from the projects table into a new project_statistics table. The counters are displayed in the administration area for projects and groups, and also available through the API for admins (on */all) and normal users (on */owned) The statistics are updated through ProjectCacheWorker, which can now do more granular updates with the new :statistics argument.
-
Grzegorz Bizon authored
[ci skip]
-
- 16 Dec, 2016 1 commit
-
-
Timothy Andrew authored
- Move the `Oauth2::AccessTokenValidationService` class to `AccessTokenValidationService`, since it is now being used for personal access token validation as well. - Each API endpoint declares the scopes it accepts (if any). Currently, the top level API module declares the `api` scope, and the `Users` API module declares the `read_user` scope (for GET requests). - Move the `find_user_by_private_token` from the API `Helpers` module to the `APIGuard` module, to avoid littering `Helpers` with more auth-related methods to support `find_user_by_private_token`
-
- 13 Dec, 2016 1 commit
-
-
Rémy Coutable authored
Signed-off-by: Rémy Coutable <remy@rymai.me>
-
- 12 Dec, 2016 1 commit
-
-
Rémy Coutable authored
The issue was arising when `#current_user` was called a second time after a user was impersonated: the `User#is_admin?` check would be performed on it and it would fail. Signed-off-by: Rémy Coutable <remy@rymai.me>
-
- 09 Dec, 2016 1 commit
-
-
Robert Schilling authored
-
- 08 Dec, 2016 1 commit
-
-
Dmitriy Zaporozhets authored
* add parent_id field to namespaces table to store relation with nested groups * create routes table to keep information about full path of every group and project * project/group lookup by full path from routes table Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
-