delta/gitlab/gitlab-ce.git/lib, branch 25681-network-graph-long-commit-msg gitlab.com: gitlab-org/gitlab-ce.git Merge branch '20492-access-token-scopes' into 'master' 2016-12-16T17:38:41+00:00 Rémy Coutable remy@rymai.me 2016-12-16T17:38:41+00:00 ca6bf62ec14a37bf13f670ff7f62a4c12309fea5 Resolve "Add a doorkeeper scope suitable for authentication" ## What does this MR do? - Add a single new scope (in addition to the `api` scope we've had) - `read_user` - Allow creating OAuth applications and Personal access tokens with a scope selected - Enforce scopes in the API ## What are the relevant issue numbers? - Closes #20492 - EE counterpart for this MR: gitlab-org/gitlab-ee!946 See merge request !5951 

Resolve "Add a doorkeeper scope suitable for authentication"

## What does this MR do?

- Add a single new scope (in addition to the `api` scope we've had) - `read_user`
- Allow creating OAuth applications and Personal access tokens with a scope selected
- Enforce scopes in the API

## What are the relevant issue numbers?

- Closes #20492 
- EE counterpart for this MR: gitlab-org/gitlab-ee!946

See merge request !5951
 Merge branch 'issue_22269' into 'master' 2016-12-16T13:23:19+00:00 Kamil Trzciński ayufan@ayufan.eu 2016-12-16T13:23:19+00:00 bdb5e6771856c280fa1cf92b19a47fb83a4988ec Mattermost Notifications Service ## What does this MR do? closes #22269 ## Screenshots ![mattermost](/uploads/de71c121f544a91305b6dfa6dc4c5738/mattermost.png) ![slack](/uploads/081d75d49239319d94332abda214fb98/slack.png) ## Does this MR meet the acceptance criteria? - [x] [Changelog entry](https://docs.gitlab.com/ce/development/changelog.html) added - [x] [Documentation created/updated](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/doc/development/doc_styleguide.md) - [x] API support added - Tests - [x] Added for this feature/bug - [x] All builds are passing - [x] Conform by the [merge request performance guides](http://docs.gitlab.com/ce/development/merge_request_performance_guidelines.html) - [x] Conform by the [style guides](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/CONTRIBUTING.md#style-guides) - [x] Branch has no merge conflicts with `master` (if it does - rebase it please) - [x] [Squashed related commits together](https://git-scm.com/book/en/Git-Tools-Rewriting-History#Squashing-Commits) See merge request !7764 

Mattermost Notifications Service

## What does this MR do?
closes #22269 

## Screenshots 

![mattermost](/uploads/de71c121f544a91305b6dfa6dc4c5738/mattermost.png)  
![slack](/uploads/081d75d49239319d94332abda214fb98/slack.png)

## Does this MR meet the acceptance criteria?

- [x] [Changelog entry](https://docs.gitlab.com/ce/development/changelog.html) added
- [x] [Documentation created/updated](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/doc/development/doc_styleguide.md)
- [x] API support added
- Tests
  - [x] Added for this feature/bug
  - [x] All builds are passing
- [x] Conform by the [merge request performance guides](http://docs.gitlab.com/ce/development/merge_request_performance_guidelines.html)
- [x] Conform by the [style guides](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/CONTRIBUTING.md#style-guides)
- [x] Branch has no merge conflicts with `master` (if it does - rebase it please)
- [x] [Squashed related commits together](https://git-scm.com/book/en/Git-Tools-Rewriting-History#Squashing-Commits)


See merge request !7764
 Rename the `token_has_scope?` method. 2016-12-16T10:59:32+00:00 Timothy Andrew mail@timothyandrew.net 2016-12-05T17:28:19+00:00 5becbe2495850923604c71b4c807666ea94819b3 `valid_api_token?` is a better name. Scopes are just (potentially) one facet of a "valid" token. 
`valid_api_token?` is a better name. Scopes are just (potentially) one facet of
a "valid" token.
Convert AccessTokenValidationService into a class. 2016-12-16T10:59:32+00:00 Timothy Andrew mail@timothyandrew.net 2016-12-05T17:25:53+00:00 b303948ff549ce57d3b6985c2c366dfcdc5a2ca3 - Previously, AccessTokenValidationService was a module, and all its public methods accepted a token. It makes sense to convert it to a class which accepts a token during initialization. - Also rename the `sufficient_scope?` method to `include_any_scope?` - Based on feedback from @rymai 
- Previously, AccessTokenValidationService was a module, and all its  public
methods accepted a token. It makes sense to convert it to a class which accepts
a token during initialization.

- Also rename the `sufficient_scope?` method to `include_any_scope?`

- Based on feedback from @rymai
Refactor access token validation in `Gitlab::Auth` 2016-12-16T10:59:32+00:00 Timothy Andrew mail@timothyandrew.net 2016-11-24T09:09:12+00:00 dc95bcbb165289d9754e6bf66288c8d4350f6e57 - Based on @dbalexandre's review - Extract token validity conditions into two separate methods, for personal access tokens and OAuth tokens. 
- Based on @dbalexandre's review
- Extract token validity conditions into two separate methods, for
  personal access tokens and OAuth tokens.
Implement minor changes from @dbalexandre's review. 2016-12-16T10:59:31+00:00 Timothy Andrew mail@timothyandrew.net 2016-11-24T07:37:22+00:00 4d6da770de94f4bf140507cdf43461b67269ce28 - Mainly whitespace changes. - Require the migration adding the `scope` column to the `personal_access_tokens` table to have downtime, since API calls will fail if the new code is in place, but the migration hasn't run. - Minor refactoring - load `@scopes` in a `before_action`, since we're doing it in three different places. 
- Mainly whitespace changes.

- Require the migration adding the `scope` column to the
  `personal_access_tokens` table to have downtime, since API calls will
  fail if the new code is in place, but the migration hasn't run.

- Minor refactoring - load `@scopes` in a `before_action`, since we're
  doing it in three different places.
Validate access token scopes in `Gitlab::Auth` 2016-12-16T10:59:31+00:00 Timothy Andrew mail@timothyandrew.net 2016-11-22T09:13:37+00:00 36b3210b9ec4fffd9fa5a73626907e8a6a59f435 - This module is used for git-over-http, as well as JWT. - The only valid scope here is `api`, currently. 
- This module is used for git-over-http, as well as JWT.

- The only valid scope here is `api`, currently.
Calls to the API are checked for scope. 2016-12-16T10:59:31+00:00 Timothy Andrew mail@timothyandrew.net 2016-11-22T09:04:23+00:00 7fa06ed55d18af4d055041eb27d38fecf9b5548f - Move the `Oauth2::AccessTokenValidationService` class to `AccessTokenValidationService`, since it is now being used for personal access token validation as well. - Each API endpoint declares the scopes it accepts (if any). Currently, the top level API module declares the `api` scope, and the `Users` API module declares the `read_user` scope (for GET requests). - Move the `find_user_by_private_token` from the API `Helpers` module to the `APIGuard` module, to avoid littering `Helpers` with more auth-related methods to support `find_user_by_private_token` 
- Move the `Oauth2::AccessTokenValidationService` class to
  `AccessTokenValidationService`, since it is now being used for
  personal access token validation as well.

- Each API endpoint declares the scopes it accepts (if any). Currently,
  the top level API module declares the `api` scope, and the `Users` API
  module declares the `read_user` scope (for GET requests).

- Move the `find_user_by_private_token` from the API `Helpers` module to
  the `APIGuard` module, to avoid littering `Helpers` with more
  auth-related methods to support `find_user_by_private_token`
Merge branch 'katex-math-fixup' into 'master' 2016-12-16T00:35:58+00:00 Sean McGivern sean@mcgivern.me.uk 2016-12-16T00:35:58+00:00 0193822d5dd4062e9c631ce4866ec7316a045fd0 Don't open Asciidoc module twice See merge request !8119 

Don't open Asciidoc module twice

See merge request !8119
 Merge branch '25144-gitlab-ce-mattermost-slash-command-for-issue-create-needs-better-documentation' into 'master' 2016-12-15T21:39:53+00:00 Kamil Trzciński ayufan@ayufan.eu 2016-12-15T21:39:53+00:00 026cef7ac2c827acba39761e708c054fd47fb51d Resolve "gitlab-ce mattermost slash command for issue create needs better documentation" ## What does this MR do? Updates the documentation and the <kbd>help</kbd> command to be clearer, having the keys used to add a newline in chat clients (both Mattermost and Slack). ## Are there points in the code the reviewer needs to double check? * Are the available commands (via <kbd>help</kbd>) being formatted as `<code>` ? ## Why was this MR needed? `\n` represents a new line character and doesn't communicate how the user should input the command. Also, to be correct, the documentation should use `<kbd>` instead of `<code>` for user input ([see HTML5 specification](https://www.w3.org/TR/html5/text-level-semantics.html#the-kbd-element)) ## Screenshots (if relevant) | Mattermost | Docs | | --- | --- | | ![image](/uploads/539526a14bfd551b7e732dd96c5b7581/image.png) | ![image](/uploads/e3eb099f86c5a32ce3b8954e72c29848/image.png) | ## Does this MR meet the acceptance criteria? - [x] [Changelog entry](https://docs.gitlab.com/ce/development/changelog.html) added - [x] [Documentation created/updated](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/doc/development/doc_styleguide.md) - Tests - [ ] All builds are passing ## What are the relevant issue numbers? Closes #25144 See merge request !7850 

Resolve "gitlab-ce mattermost slash command for issue create needs better documentation"

## What does this MR do?

Updates the documentation and the <kbd>help</kbd> command to be clearer, having the keys used to add a newline in chat clients (both Mattermost and Slack). 

## Are there points in the code the reviewer needs to double check?

* Are the available commands (via <kbd>help</kbd>) being formatted as `<code>` ?

## Why was this MR needed?

`\n` represents a new line character and doesn't communicate how the user should input the command. Also, to be correct, the documentation should use `<kbd>` instead of `<code>` for user input ([see HTML5 specification](https://www.w3.org/TR/html5/text-level-semantics.html#the-kbd-element))

## Screenshots (if relevant)

| Mattermost | Docs |
| --- | --- |
| ![image](/uploads/539526a14bfd551b7e732dd96c5b7581/image.png) | ![image](/uploads/e3eb099f86c5a32ce3b8954e72c29848/image.png) |

## Does this MR meet the acceptance criteria?

- [x] [Changelog entry](https://docs.gitlab.com/ce/development/changelog.html) added
- [x] [Documentation created/updated](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/doc/development/doc_styleguide.md)
- Tests
  - [ ] All builds are passing

## What are the relevant issue numbers?

Closes #25144

See merge request !7850