summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Split into sections, port `downgrade_ee_to_ce` doc from EEdoc-updating-gitlabAchilleas Pipinellis2016-04-212-8/+164
| | | | [ci skip]
* Fix links in update READMEAchilleas Pipinellis2016-04-191-5/+8
| | | | [ci skip]
* Merge branch 'toggle-points-per-packet' into 'master' Rémy Coutable2016-04-196-24/+40
|\ | | | | | | | | | | | | | | | | Configuring of points per UDP packet Related to https://gitlab.com/gitlab-com/operations/issues/195. This option would allow us to experiment with finding a good balance between points-per-packet and the UDP packet size. cc @pcarranza See merge request !3816
| * Configuring of points per UDP packettoggle-points-per-packetYorick Peterse2016-04-196-24/+40
| | | | | | | | | | | | | | | | | | This allows users to configure the number of points stored in a single UDP packet. This in turn can be used to reduce the number of UDP packets being sent at the cost of these packets being somewhat larger. The default setting is 1 point per packet so nothing changes for existing users.
* | Merge branch 'bump-version' into 'master' Yorick Peterse2016-04-192-1/+3
|\ \ | | | | | | | | | | | | Bump version to 8.8.0-pre See merge request !3809
| * | Bump version to 8.8.0-prebump-versionDmitriy Zaporozhets2016-04-192-1/+3
| | | | | | | | | | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
* | | Merge branch 'master' of gitlab.com:gitlab-org/gitlab-ceDmitriy Zaporozhets2016-04-191-1/+1
|\ \ \
| * \ \ Merge branch 'patch-1' into 'master' Hannes Rosenögger2016-04-191-1/+1
| |\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | "git lfs init" is deprecated, use "git lfs install" instead. Recent releases of git-lfs warn that "init" is a deprecated command and that "install" should be used. See merge request !3779
| | * | | "git lfs init" is deprecated, use "git lfs install" instead.Con Vissenberg2016-04-181-1/+1
| | | | |
* | | | | Merge branch 'rs-issue-15126' into 'master' Douwe Maan2016-04-196-5/+35
|\ \ \ \ \ | |/ / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Remove persistent XSS vulnerability in `commit_person_link` helper Because we were incorrectly supplying the tooltip title as `data-original-title` (which Bootstrap's Tooltip JS automatically applies based on the `title` attribute; we should never be setting it directly), the value was being passed through as-is. Instead, we should be supplying the normal `title` attribute and letting Rails escape the value, which also negates the need for us to call `sanitize` on it. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/15126 See merge request !1948
| * | | | Remove additional misuse of `data-original-title` attributeRobert Speicher2016-04-183-3/+3
| | | | |
| * | | | Remove persistent XSS vulnerability in `commit_person_link` helperRobert Speicher2016-04-173-2/+32
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Because we were incorrectly supplying the tooltip title as `data-original-title` (which Bootstrap's Tooltip JS automatically applies based on the `title` attribute; we should never be setting it directly), the value was being passed through as-is. Instead, we should be supplying the normal `title` attribute and letting Rails escape the value, which also negates the need for us to call `sanitize` on it. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/15126
* | | | | Merge branch 'profile-aside-toggle' into 'master' Jacob Schatz2016-04-191-2/+0
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Removed aside toggle on profile pages Closes #13943 See merge request !3796
| * | | | | Removed aside toggle on profile pagesprofile-aside-togglePhil Hughes2016-04-181-2/+0
| | | | | | | | | | | | | | | | | | | | | | | | Closes #13943
* | | | | | Merge branch 'dropdown-filter-after-load' into 'master' Jacob Schatz2016-04-192-0/+4
|\ \ \ \ \ \ | |_|_|_|_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Trigger filtering after ajax is complete in dropdown ![filter](/uploads/1c361d968769eb3fe5cdd05dee497aa6/filter.gif) Closes #15186 See merge request !3813
| * | | | | Trigger filtering after ajax is complete in dropdowndropdown-filter-after-loadPhil Hughes2016-04-192-0/+4
| | |_|_|/ | |/| | | | | | | | | | | | | Closes #15186
* | | | | Merge branch 'api-fix-annotated-tags' into 'master' Rémy Coutable2016-04-193-1/+4
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | API: Present an array of Gitlab::Git::Tag instead of array of rugged tags The annotated message was always `null` because the wrong array was presented. The entity requires an array of `Gitlab::Git::Tags` instead an array of raw rugged tags was presented. Since a rugged tag does not respond to `message` to get the annotated message, this was always `null`. See merge request !3764
| * | | | | Ensure that annoation is presented properlyRobert Schilling2016-04-181-0/+2
| | | | | |
| * | | | | API: Present an array of Gitlab::Git::Tag instead of array of rugged tagsRobert Schilling2016-04-172-1/+2
| | | | | |
* | | | | | Merge branch 'docs/notice-about-gitlab-runner' into 'master' Grzegorz Bizon2016-04-192-1/+25
|\ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add notice about GitLab Runner to requirements docs This is related to #14589, and problems that may stem from running GitLab Runner on same machine user installed GitLab web app on. See merge request !3518
| * | | | | | Add a note about installing Runners in ci/runners/README.mddocs/notice-about-gitlab-runnerAchilleas Pipinellis2016-04-111-1/+5
| | | | | | |
| * | | | | | Add link to Runner security docAchilleas Pipinellis2016-04-111-4/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | [ci skip]
| * | | | | | Add notice about GitLab Runner to requirements docsGrzegorz Bizon2016-04-041-0/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is related to !14589, and problems that may stem from running GitLab Runner on same machine user installed GitLab web app on.
* | | | | | | Merge branch 'configurable-shared-runners-text' into 'master' Kamil Trzciński2016-04-198-4/+39
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add configurable shared runners text cc @axil @rspeicher @grzesiek See merge request !3750
| * | | | | | | Use different markdownconfigurable-shared-runners-textKamil Trzcinski2016-04-192-3/+4
| | | | | | | |
| * | | | | | | Fix CHANGELOGKamil Trzcinski2016-04-181-1/+0
| | | | | | | |
| * | | | | | | Update according to review commentsKamil Trzcinski2016-04-182-6/+5
| | | | | | | |
| * | | | | | | Add configurable shared runners textKamil Trzcinski2016-04-188-4/+40
| | | | | | | |
* | | | | | | | Merge branch 'master' of dev.gitlab.org:gitlab/gitlabhqGrzegorz Bizon2016-04-193-4/+59
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * 'master' of dev.gitlab.org:gitlab/gitlabhq: Add Changelog entry for group link permissions fix Use guard clause to check ability to share project Refactor method that shares project with a group Check permissions when sharing project with group
| * \ \ \ \ \ \ \ Merge branch 'fix/link-group-permissions' into 'master' Douwe Maan2016-04-193-4/+59
| |\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Check permissions when sharing project with group ## Summary Unprivileged user was able to share project with group he didn't have access to, and therefore gain partial access to that group, which opened possibilities for further actions like listing private projects in that group. See https://gitlab.com/gitlab-org/gitlab-ce/issues/15330 ## Fix This change introduces additional check for group read access. ## Further work We can think about preventing such problems in the future (this is quite common problem) by moving permissions checks to another layer of abstraction (TBD). Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/15330 See merge request !1949
| | * | | | | | | | Add Changelog entry for group link permissions fixGrzegorz Bizon2016-04-191-0/+3
| | | | | | | | | |
| | * | | | | | | | Use guard clause to check ability to share projectGrzegorz Bizon2016-04-191-7/+4
| | | | | | | | | |
| | * | | | | | | | Refactor method that shares project with a groupGrzegorz Bizon2016-04-191-4/+3
| | | | | | | | | |
| | * | | | | | | | Check permissions when sharing project with groupGrzegorz Bizon2016-04-192-4/+60
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Closes #15330
* | | | | | | | | | Merge branch 'make-before-after-overridable' into 'master' Kamil Trzciński2016-04-194-18/+109
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Make before_script and after_script overridable This is makes it possible to overwrite the before_script and after_script at job level. This is continuation of https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/3771 See merge request !3772
| * | | | | | | | | | Make rubocop happymake-before-after-overridableKamil Trzcinski2016-04-182-20/+23
| | | | | | | | | | |
| * | | | | | | | | | Trigger buildsKamil Trzcinski2016-04-180-0/+0
| | | | | | | | | | |
| * | | | | | | | | | Merge branch 'after-script' into make-before-after-overridableKamil Trzcinski2016-04-181-15/+0
| |\ \ \ \ \ \ \ \ \ \
| * \ \ \ \ \ \ \ \ \ \ Merge branch 'after-script' into make-before-after-overridableKamil Trzcinski2016-04-1858-360/+960
| |\ \ \ \ \ \ \ \ \ \ \
| * \ \ \ \ \ \ \ \ \ \ \ Merge branch 'after-script' into make-before-after-overridableKamil Trzcinski2016-04-183-29/+38
| |\ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | Update CHANGELOG and add documentationKamil Trzcinski2016-04-172-0/+21
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | Merge branch 'after-script' into make-before-after-overridableKamil Trzcinski2016-04-174-23/+34
| |\ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * after-script: Add CHANGELOG and documentation Rename finally_script to after_script Conflicts: lib/ci/gitlab_ci_yaml_processor.rb spec/lib/ci/gitlab_ci_yaml_processor_spec.rb
| * | | | | | | | | | | | | | Allow the before_script and finally_script to be overwritten in context of jobKamil Trzcinski2016-04-162-14/+81
| | | | | | | | | | | | | | |
* | | | | | | | | | | | | | | Merge branch 'after-script' into 'master' Kamil Trzciński2016-04-194-18/+73
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | | |_|_|_|/ / / / / / / / / / | |/| | | | / / / / / / / / / | |_|_|_|_|/ / / / / / / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Implement after_script which allows to do cleanups as part of the build process This implements `after_script` in global context. The `after_script` will be executed always after the job, even if the job were canceled. This requires changes on Runner side that will be implemented in 1.2. cc @tmaczukin @grzesiek See merge request !3771
| * | | | | | | | | | | | | Resolve mergeafter-scriptKamil Trzcinski2016-04-181-15/+0
| | |_|_|/ / / / / / / / / | |/| | | | | | | | | | |
| * | | | | | | | | | | | Merge remote-tracking branch 'origin/master' into after-scriptKamil Trzcinski2016-04-1827-114/+363
| |\ \ \ \ \ \ \ \ \ \ \ \ | | | |_|_|_|/ / / / / / / | | |/| | | | | | | | | |
| * | | | | | | | | | | | Merge remote-tracking branch 'origin/master' into after-scriptKamil Trzcinski2016-04-1832-246/+597
| |\ \ \ \ \ \ \ \ \ \ \ \ | | |_|_|_|/ / / / / / / / | |/| | | | | | | | | | |
| * | | | | | | | | | | | Fix rubocop complainsKamil Trzcinski2016-04-182-29/+35
| | | | | | | | | | | | |
| * | | | | | | | | | | | Add note about versionKamil Trzcinski2016-04-171-0/+3
| | |_|_|/ / / / / / / / | |/| | | | | | | | | |
| * | | | | | | | | | | Add CHANGELOG and documentationKamil Trzcinski2016-04-172-0/+11
| | | | | | | | | | | |
View Lorry Controller Status