delta/gitlab/gitlab-ce.git/config/initializers/doorkeeper.rb, branch fix-trace-reader-encoding gitlab.com: gitlab-org/gitlab-ce.git Calls to the API are checked for scope. 2016-12-16T10:59:31+00:00 Timothy Andrew mail@timothyandrew.net 2016-11-22T09:04:23+00:00 7fa06ed55d18af4d055041eb27d38fecf9b5548f - Move the `Oauth2::AccessTokenValidationService` class to `AccessTokenValidationService`, since it is now being used for personal access token validation as well. - Each API endpoint declares the scopes it accepts (if any). Currently, the top level API module declares the `api` scope, and the `Users` API module declares the `read_user` scope (for GET requests). - Move the `find_user_by_private_token` from the API `Helpers` module to the `APIGuard` module, to avoid littering `Helpers` with more auth-related methods to support `find_user_by_private_token` 
- Move the `Oauth2::AccessTokenValidationService` class to
  `AccessTokenValidationService`, since it is now being used for
  personal access token validation as well.

- Each API endpoint declares the scopes it accepts (if any). Currently,
  the top level API module declares the `api` scope, and the `Users` API
  module declares the `read_user` scope (for GET requests).

- Move the `find_user_by_private_token` from the API `Helpers` module to
  the `APIGuard` module, to avoid littering `Helpers` with more
  auth-related methods to support `find_user_by_private_token`
Small refactor and syntax fixes. 2016-08-18T21:47:26+00:00 Patricio Cano suprnova32@gmail.com 2016-08-17T22:39:20+00:00 a4137411c62d093a55dc171665dc90325182bb04 






Removed unnecessary service for user retrieval and improved API error message.
2016-08-18T21:47:26+00:00

Patricio Cano
suprnova32@gmail.com

2016-08-17T16:56:50+00:00

c29780086201b331091be3ba5df0653381cf0c2c












Added checks for 2FA to the API `/sessions` endpoint and the Resource Owner Password Credentials flow.
2016-08-18T21:47:26+00:00

Patricio Cano
suprnova32@gmail.com

2016-08-12T21:16:12+00:00

e2f9c87600e34a415d43c981e0182094b123771f












Improve Gitlab::Auth method names
2016-06-10T12:51:16+00:00

Jacob Vosmaer
jacob@gitlab.com

2016-06-10T12:51:16+00:00

0e896ffe4eebb8bcf04bc1327d498bb041faed56

Auth.find was a very generic name for a very specific method.
Auth.find_in_gitlab_or_ldap was inaccurate in GitLab EE where it also
looks in Kerberos.





Auth.find was a very generic name for a very specific method.
Auth.find_in_gitlab_or_ldap was inaccurate in GitLab EE where it also
looks in Kerberos.







Rename finder to find_in_gitlab_or_ldap
2016-06-02T11:42:18+00:00

Jacob Vosmaer
jacob@gitlab.com

2016-06-02T11:42:18+00:00

fea591e5c5796235d28eeec4d27759f87fa9d8e2












Merge branch 'master' into git-http-controller
2016-06-02T11:31:11+00:00

Jacob Vosmaer
jacob@gitlab.com

2016-06-02T11:31:11+00:00

8299fc277d417278a92179fd560431785ebf532e

Conflicts:
	config/routes.rb





Conflicts:
	config/routes.rb







Add leading comment space cop
2016-05-31T22:33:46+00:00

Felipe Artur
felipefac@gmail.com

2016-05-31T22:33:46+00:00

56f3b243ce08d105758a9b6edf96792627fa423c












Make CI/Oauth/rate limiting reusable
2016-04-29T16:58:55+00:00

Jacob Vosmaer
contact@jacobvosmaer.nl

2016-04-29T16:58:55+00:00

b1ffc9f0fee16251899e5a2efbc78c4781ef4902












retrieving oauth token with LDAP credentials
2015-08-31T12:10:01+00:00

Valery Sizov
vsv2711@gmail.com

2015-08-27T14:01:11+00:00

6f785d584b2607ccd6997933364434e7d9a27504