<feed xmlns='http://www.w3.org/2005/Atom'>
<title>delta/gitlab/gitlab-ce.git/config/application.rb, branch replace_explore_projects.feature</title>
<subtitle>gitlab.com: gitlab-org/gitlab-ce.git
</subtitle>
<link rel='alternate' type='text/html' href='http://git.baserock.org/cgit/delta/gitlab/gitlab-ce.git/'/>
<entry>
<title>Create idea of read-only database</title>
<updated>2017-10-06T20:37:40+00:00</updated>
<author>
<name>Toon Claes</name>
<email>toon@iotcl.com</email>
</author>
<published>2017-09-19T07:44:58+00:00</published>
<link rel='alternate' type='text/html' href='http://git.baserock.org/cgit/delta/gitlab/gitlab-ce.git/commit/?id=d13669716ab0c31ce9039ae9f7f073e33a4dc40f'/>
<id>d13669716ab0c31ce9039ae9f7f073e33a4dc40f</id>
<content type='text'>
In GitLab EE, a GitLab instance can be read-only (e.g. when it's a Geo
secondary node). But in GitLab CE it also might be useful to have the
"read-only" idea around. So port it back to GitLab CE.

Also having the principle of read-only in GitLab CE would hopefully
lead to less errors introduced, doing write operations when there
aren't allowed for read-only calls.

Closes gitlab-org/gitlab-ce#37534.
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
In GitLab EE, a GitLab instance can be read-only (e.g. when it's a Geo
secondary node). But in GitLab CE it also might be useful to have the
"read-only" idea around. So port it back to GitLab CE.

Also having the principle of read-only in GitLab CE would hopefully
lead to less errors introduced, doing write operations when there
aren't allowed for read-only calls.

Closes gitlab-org/gitlab-ce#37534.
</pre>
</div>
</content>
</entry>
<entry>
<title>Load only the currently needed JS locale file</title>
<updated>2017-10-04T11:23:52+00:00</updated>
<author>
<name>Tim Zallmann</name>
<email>tzallmann@gitlab.com</email>
</author>
<published>2017-10-04T11:23:52+00:00</published>
<link rel='alternate' type='text/html' href='http://git.baserock.org/cgit/delta/gitlab/gitlab-ce.git/commit/?id=412571a4dfbf90d85df1393fa0075aacae27137d'/>
<id>412571a4dfbf90d85df1393fa0075aacae27137d</id>
<content type='text'>
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
</pre>
</div>
</content>
</entry>
<entry>
<title>Move new nav into main CSS folder</title>
<updated>2017-09-25T17:11:42+00:00</updated>
<author>
<name>Annabel Dunstone Gray</name>
<email>annabel.dunstone@gmail.com</email>
</author>
<published>2017-09-19T21:42:35+00:00</published>
<link rel='alternate' type='text/html' href='http://git.baserock.org/cgit/delta/gitlab/gitlab-ce.git/commit/?id=804714449233d95ff6e4b07ecb07b941fba1a6ab'/>
<id>804714449233d95ff6e4b07ecb07b941fba1a6ab</id>
<content type='text'>
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
</pre>
</div>
</content>
</entry>
<entry>
<title>Expand filtered parameters to include `token`</title>
<updated>2017-09-10T14:05:55+00:00</updated>
<author>
<name>Stan Hu</name>
<email>stanhu@gmail.com</email>
</author>
<published>2017-09-10T14:05:55+00:00</published>
<link rel='alternate' type='text/html' href='http://git.baserock.org/cgit/delta/gitlab/gitlab-ce.git/commit/?id=66882ff3656607abae4157ac4210597f75aff2dc'/>
<id>66882ff3656607abae4157ac4210597f75aff2dc</id>
<content type='text'>
Now that we are logging API requests in `api_json.log`, we see that
the runner token was not filtered properly.
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
Now that we are logging API requests in `api_json.log`, we see that
the runner token was not filtered properly.
</pre>
</div>
</content>
</entry>
<entry>
<title>Filter additional secrets from Rails logs</title>
<updated>2017-08-31T04:18:09+00:00</updated>
<author>
<name>Stan Hu</name>
<email>stanhu@gmail.com</email>
</author>
<published>2017-08-31T04:14:29+00:00</published>
<link rel='alternate' type='text/html' href='http://git.baserock.org/cgit/delta/gitlab/gitlab-ce.git/commit/?id=d74fecac031df1c3b4e817f49f7bafe2b175be11'/>
<id>d74fecac031df1c3b4e817f49f7bafe2b175be11</id>
<content type='text'>
Upon inspection of logs, there were a number of fields not filtered. For example:

* authenticity_token: CSRF token
* rss_token: Used for RSS feeds
* secret: Used with Projects::UploadController

Rails provides a way to match regexps, so we now filter:

* Any parameter ending with `_token`
* Any parameter containing `password`
* Any parameter containing `secret`
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
Upon inspection of logs, there were a number of fields not filtered. For example:

* authenticity_token: CSRF token
* rss_token: Used for RSS feeds
* secret: Used with Projects::UploadController

Rails provides a way to match regexps, so we now filter:

* Any parameter ending with `_token`
* Any parameter containing `password`
* Any parameter containing `secret`
</pre>
</div>
</content>
</entry>
<entry>
<title>Re-enable SqlInjection and CommandInjection</title>
<updated>2017-08-08T14:50:54+00:00</updated>
<author>
<name>Brian Neel</name>
<email>brian@gitlab.com</email>
</author>
<published>2017-08-04T02:20:34+00:00</published>
<link rel='alternate' type='text/html' href='http://git.baserock.org/cgit/delta/gitlab/gitlab-ce.git/commit/?id=9770c57fab0315865a33c8b6df269eded0d57b5c'/>
<id>9770c57fab0315865a33c8b6df269eded0d57b5c</id>
<content type='text'>
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
</pre>
</div>
</content>
</entry>
<entry>
<title>Support references to group milestones</title>
<updated>2017-08-07T10:55:00+00:00</updated>
<author>
<name>Sean McGivern</name>
<email>sean@gitlab.com</email>
</author>
<published>2017-08-03T11:50:06+00:00</published>
<link rel='alternate' type='text/html' href='http://git.baserock.org/cgit/delta/gitlab/gitlab-ce.git/commit/?id=149528f472f3d2f3865ae01c764b81c6a97f9380'/>
<id>149528f472f3d2f3865ae01c764b81c6a97f9380</id>
<content type='text'>
Group milestones can only be referred to by name, not IID. They also do not
support cross-project references.
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
Group milestones can only be referred to by name, not IID. They also do not
support cross-project references.
</pre>
</div>
</content>
</entry>
<entry>
<title>Backport to CE for:</title>
<updated>2017-08-04T13:45:14+00:00</updated>
<author>
<name>Lin Jen-Shin</name>
<email>godfat@godfat.org</email>
</author>
<published>2017-08-04T13:45:14+00:00</published>
<link rel='alternate' type='text/html' href='http://git.baserock.org/cgit/delta/gitlab/gitlab-ce.git/commit/?id=b7547ade672fdcb9315ae9821c1eca195d87022a'/>
<id>b7547ade672fdcb9315ae9821c1eca195d87022a</id>
<content type='text'>
https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/2483
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/2483
</pre>
</div>
</content>
</entry>
<entry>
<title>Support multiple Redis instances based on queue type</title>
<updated>2017-07-11T03:35:47+00:00</updated>
<author>
<name>Paul Charlton</name>
<email>techguru@byiq.com</email>
</author>
<published>2017-07-11T03:35:47+00:00</published>
<link rel='alternate' type='text/html' href='http://git.baserock.org/cgit/delta/gitlab/gitlab-ce.git/commit/?id=cb3b4a15e6913bc28ee2ecaab017a4c3f08c438e'/>
<id>cb3b4a15e6913bc28ee2ecaab017a4c3f08c438e</id>
<content type='text'>
</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
</pre>
</div>
</content>
</entry>
<entry>
<title>Merge branch 'feature/user-datetime-search-api-mysql' into 'master'</title>
<updated>2017-07-07T20:52:17+00:00</updated>
<author>
<name>Douwe Maan</name>
<email>douwe@gitlab.com</email>
</author>
<published>2017-07-07T20:52:17+00:00</published>
<link rel='alternate' type='text/html' href='http://git.baserock.org/cgit/delta/gitlab/gitlab-ce.git/commit/?id=94e2a286846ee8b8b36ac29ccae7d51cb19578d5'/>
<id>94e2a286846ee8b8b36ac29ccae7d51cb19578d5</id>
<content type='text'>
Add creation time filters to user search API for admins

Closes #29507

See merge request !12682</content>
<content type='xhtml'>
<div xmlns='http://www.w3.org/1999/xhtml'>
<pre>
Add creation time filters to user search API for admins

Closes #29507

See merge request !12682</pre>
</div>
</content>
</entry>
</feed>
