delta/gitlab/gitlab-ce.git/app/models/hooks, branch NicoleSchwartz-Python-Blog gitlab.com: gitlab-org/gitlab-ce.git Inherit from ApplicationRecord instead of ActiveRecord::Base 2019-03-28T16:18:23+00:00 Nick Thomas nick@gitlab.com 2019-03-28T13:17:42+00:00 013f7cd24c4359d5d704b719d85b6df7ca1fdd55 






Use a 32-byte version of db_key_base for web hooks
2018-12-05T00:00:42+00:00

Nick Thomas
nick@gitlab.com

2018-12-04T23:54:29+00:00

2f2b0ad3905377b704aab3ad581a72a02258c3a6

AES-256-GCM cipher mode requires a key that is exactly 32 bytes long.
We already handle the case when the key is too long, by truncating, but
the key can also be too short in some installations. Switching to a key
that is always exactly the right length (by virtue of right-padding
ASCII 0 characters) allows encryption to proceed, without breaking
backward compatibility.

When the key is too short, encryption fails with an `ArgumentError`,
causing the web hooks functionality to be unusable. As a result, zero
rows can exist with values encrypted with the too-short key.

When the key is too long, it is silently truncated. In this case, the
key is unchanged, so values encrypted with the new too-long key will
still be successfully decrypted.





AES-256-GCM cipher mode requires a key that is exactly 32 bytes long.
We already handle the case when the key is too long, by truncating, but
the key can also be too short in some installations. Switching to a key
that is always exactly the right length (by virtue of right-padding
ASCII 0 characters) allows encryption to proceed, without breaking
backward compatibility.

When the key is too short, encryption fails with an `ArgumentError`,
causing the web hooks functionality to be unusable. As a result, zero
rows can exist with values encrypted with the too-short key.

When the key is too long, it is silently truncated. In this case, the
key is unchanged, so values encrypted with the new too-long key will
still be successfully decrypted.







Backport ServiceHook#execute from EE
2018-11-15T15:55:51+00:00

Yorick Peterse
yorickpeterse@gmail.com

2018-11-15T15:55:51+00:00

4ee8bd11fa317a99dc0f99ea8d33271e4c9d1a47

In EE this method takes an additional argument that specifies the name
of the hook to trigger. There is no particular reason to not backport
this to CE, since by default the behaviour remains the same. By
backporting this code we remove the need for prepending ServiceHook with
a module in EE.





In EE this method takes an additional argument that specifies the name
of the hook to trigger. There is no particular reason to not backport
this to CE, since by default the behaviour remains the same. By
backporting this code we remove the need for prepending ServiceHook with
a module in EE.







Remove unencrypted webhook token and URL columns
2018-10-09T10:15:02+00:00

Nick Thomas
nick@gitlab.com

2018-10-08T15:03:07+00:00

ff9881d99193bd64d112bb03311aecd75f4270ae












Encrypt webhook tokens and URLs in the database
2018-10-01T14:33:36+00:00

Nick Thomas
nick@gitlab.com

2018-09-10T12:05:22+00:00

fb48eaba4600c1e0e36afae6ec7638d52265a62c












Merge branch 'rubocop-code-reuse' into 'master'
2018-09-13T14:53:05+00:00

Robert Speicher
robert@gitlab.com

2018-09-13T14:53:05+00:00

c7d1eef671dbf598814a6c2ff1f81b924583ae8a

Add RuboCop cops to enforce code reusing rules

See merge request gitlab-org/gitlab-ce!21391




Add RuboCop cops to enforce code reusing rules

See merge request gitlab-org/gitlab-ce!21391






Disable existing offenses for the CodeReuse cops
2018-09-11T15:32:00+00:00

Yorick Peterse
yorickpeterse@gmail.com

2018-08-27T15:31:01+00:00

2039c8280db1646845c33d6c5a74e5f23ca6f4de

This whitelists all existing offenses for the various CodeReuse cops, of
which most are triggered by the CodeReuse/ActiveRecord cop.





This whitelists all existing offenses for the various CodeReuse cops, of
which most are triggered by the CodeReuse/ActiveRecord cop.







Enable frozen string in vestigial files
2018-09-11T09:06:35+00:00

gfyoung
gfyoung17@gmail.com

2018-09-11T09:05:23+00:00

0bdd2ed5776bdb18c4ee81b3381a55305c940bc4

Partially addresses #47424.





Partially addresses #47424.







Refactor ProtectedRefMatcher to be more generic
2018-08-13T11:36:22+00:00

Duana Saskia
starkcoffee@users.noreply.github.com

2018-07-25T11:01:10+00:00

c322976032e45f02b60701ebf244a8a876063078












Filter project hooks by branch
2018-08-13T11:20:58+00:00

Duana Saskia
starkcoffee@users.noreply.github.com

2018-06-07T07:35:17+00:00

ece6a1ea6ecffdbde5ff7d663f1ad1eb74f78aa6

Allow specificying a branch filter for a project hook and only trigger
a project hook if either the branch filter is blank or the branch matches.
Only supported for push_events for now.





Allow specificying a branch filter for a project hook and only trigger
a project hook if either the branch filter is blank or the branch matches.
Only supported for push_events for now.