BigW Consortium Gitlab

  1. 30 Jun, 2017 1 commit
    • Implement review comments for !12445 from @godfat and @rymai. · 3c88a786
      Timothy Andrew authored
      - Use `GlobalPolicy` to authorize the users that a non-authenticated user can
        fetch from `/api/v4/users`. We allow access if the `Gitlab::VisibilityLevel::PUBLIC`
        visibility level is not restricted.
      
      - Further, as before, `/api/v4/users` is only accessible to unauthenticated users if
        the `username` parameter is passed.
      
      - Turn off `authenticate!` for the `/api/v4/users` endpoint by matching on the actual
        route + method, rather than the description.
      
      - Change the type of `current_user` check in `UsersFinder` to be more
        compatible with EE.
  2. 29 Jun, 2017 1 commit
  3. 27 Jun, 2017 1 commit
  4. 12 Apr, 2017 1 commit
  5. 09 Mar, 2017 1 commit
  6. 23 Feb, 2017 1 commit
  7. 18 Jan, 2017 2 commits
  8. 30 Aug, 2016 11 commits