BigW Consortium Gitlab

  1. 12 Jul, 2017 1 commit
  2. 11 Jul, 2017 2 commits
  3. 07 Jul, 2017 1 commit
  4. 06 Jun, 2017 1 commit
  5. 31 May, 2017 1 commit
  6. 30 May, 2017 3 commits
  7. 25 May, 2017 1 commit
  8. 18 May, 2017 1 commit
  9. 16 May, 2017 1 commit
  10. 09 May, 2017 1 commit
  11. 06 May, 2017 1 commit
  12. 04 May, 2017 3 commits
  13. 25 Apr, 2017 1 commit
    • Don't display the `is_admin?` flag for user API responses. · 34b71e73
      Timothy Andrew authored
      - To prevent an attacker from enumerating the `/users` API to get a list of all
        the admins.
      
      - Display the `is_admin?` flag wherever we display the `private_token` - at the
        moment, there are two instances:
      
        - When an admin uses `sudo` to view the `/user` endpoint
        - When logging in using the `/session` endpoint
  14. 24 Apr, 2017 1 commit
  15. 24 Mar, 2017 1 commit
  16. 06 Mar, 2017 2 commits
  17. 28 Feb, 2017 1 commit
  18. 15 Feb, 2017 1 commit
  19. 03 Feb, 2017 2 commits
  20. 07 Dec, 2016 1 commit
  21. 19 Oct, 2016 1 commit
  22. 13 Oct, 2016 1 commit
  23. 11 Oct, 2016 2 commits
  24. 07 Oct, 2016 2 commits
  25. 31 Aug, 2016 1 commit
  26. 19 Aug, 2016 1 commit
  27. 17 Aug, 2016 5 commits