summaryrefslogtreecommitdiff
path: root/lib/api/helpers.rb
Commit message (Collapse)AuthorAgeFilesLines
* Drone CI serviceKirilll Zaitsev2015-09-021-0/+26
|
* Allow to configure gitlab_shell_secret locationJakub Jirutka2015-05-161-1/+1
|
* Query issues, merge requests and milestones with their IID through APIjubianchi2015-05-021-0/+4
|
* Enable more rubocop style checksDmitriy Zaporozhets2015-03-241-2/+2
|
* Merge branch 'master' into fix-restricted-visibilityVinnie Okada2015-03-141-1/+4
|\ | | | | | | | | Conflicts: db/schema.rb
| * use constant-time string compare for internal api authenticationJörg Thalheim2015-03-061-1/+4
| | | | | | | | | | | | | | Ruby str_equal uses memcmp internally to compare String. Memcmp is vunerable to timing attacks because it returns early on mismatch (on most x32 platforms memcmp uses a bytewise comparision). Devise.secure_compare implements a constant time comparision instead.
* | Allow admins to override restricted visibilityVinnie Okada2015-03-081-1/+1
|/ | | | | Allow admins to use restricted visibility levels when creating or updating projects.
* Improve broadcast message APIDmitriy Zaporozhets2015-02-181-2/+2
|
* Edit group members via APIVinnie Okada2015-02-111-0/+5
| | | | | Add an API endpoint to update the access level of an existing group member.
* Refactor and improve sorting objects in API for projects, issues and merge ↵Dmitriy Zaporozhets2015-02-051-0/+16
| | | | requests
* Merge pull request #8723 from jubianchi/api-groups-pathDmitriy Zaporozhets2015-02-031-2/+23
|\ | | | | Access groups using path
| * Acces groups with their path in APIjubianchi2015-02-031-2/+23
| |
* | Rubocop enabled for: Use spaces inside hash literal bracesDmitriy Zaporozhets2015-02-021-1/+1
|/
* Update branch api not found messages to 'Branch not found'.Marin Jankovski2014-12-301-1/+1
|
* Doorkeeper integrationValery Sizov2014-12-241-1/+1
|
* add gitlab-shell identificationValery Sizov2014-10-151-0/+8
|
* Add parenthesis to function def with arguments.Ciro Santilli2014-10-031-1/+1
|
* Improve error reporting on users APIjubianchi2014-09-161-1/+11
| | | | | | | | * users (#6878, #3526, #4209): Validation error messages are now exposed through 400 responses, 409 response are sent in case of duplicate email or username * MRs (#5335): 409 responses are sent in case of duplicate merge request (source/target branches), 422 responses are sent when submiting MR fo/from unrelated forks * issues * labels * projects
* Improve labels validation and expose error messagesjubianchi2014-08-201-2/+6
|
* Do label validation for issues/merge requests APIRobert Schilling2014-08-141-0/+15
|
* Add an option to GET /projects in the GitLab API to exclude archived projectsSasha Joseph2014-07-281-0/+4
|
* Make app works with strong paramsDmitriy Zaporozhets2014-06-261-2/+6
| | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
* Remove set of thread variablesDmitriy Zaporozhets2014-06-101-10/+0
| | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
* Check user access status in API for current_userJacob Vosmaer2014-05-151-0/+5
|
* Create branch via APIDmitriy Zaporozhets2014-04-011-0/+4
| | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
* Merge pull request #5469 from NARKOZ/api-pagination-headersDmitriy Zaporozhets2014-03-311-2/+18
|\ | | | | add 'Link' header for API response
| * add 'Link' header for API responseNihad Abbasov2013-10-291-2/+18
| |
* | Change project lookup order for apiDmitriy Zaporozhets2014-03-141-1/+1
| | | | | | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
* | Remove deprecated findersskv2014-01-191-2/+2
| |
* | Make sure private_token for API is a stringDmitriy Zaporozhets2013-11-081-1/+6
|/ | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
* Merge pull request #5344 from amacarthur/thread-variable-fixDmitriy Zaporozhets2013-10-161-0/+9
|\ | | | | Fixing unsafe use of Thread.current variable :current_user
| * Fixing unsafe use of Thread.current variable :current_userAngus MacArthur2013-10-161-0/+9
| |
* | refactor by_username_or_idNihad Abbasov2013-10-161-5/+1
| |
* | fix variable nameNihad Abbasov2013-10-161-1/+1
|/
* Merge pull request #5213 from bladealslayer/feature/user_api_extendedDmitriy Zaporozhets2013-09-291-1/+1
|\ | | | | Extended User API to expose admin and can_create_group for user creation...
| * Extended User API to expose admin and can_create_group for user ↵Boyan Tabakov2013-09-291-1/+1
| | | | | | | | | | | | | | creation/updating. Also, is_admin and can_create_group are exposed in the user information. Fixed attributes_for_keys to process properly keys with boolean values (since false.present? is false).
* | Respect authorization in Repository APIDmitriy Zaporozhets2013-09-291-0/+4
|/ | | | | * dont allow protect/unprotect branches for users without master permissions * dont allow access to Repository api for guests
* Some of the requested updates, rebase on masterIzaak Alpert2013-09-091-15/+8
| | | | Change-Id: I305266fe9acbbb5136adeeb52e7e4e1d6629a30a
* API: admin users can sudo commands as other usersIzaak Alpert2013-09-091-5/+39
| | | | -Specifying a header of SUDO or adding a :sudo with either user id, or username of the user will set the current_user to be that user if your identifying private_token/PRIVATE_TOKEN is an administrator token
* Additon of apis for fork administration.Angus MacArthur2013-07-081-3/+3
| | | | | Added ability to add and remove the forked from/to relatioinship between existing repos.
* Refactor API classes. So api classes like Gitlab::Issues become API::IssuesDmitriy Zaporozhets2013-05-141-1/+1
|
* API: extracted helper method to validate required parameters, code clean upSebastian Ziebell2013-02-271-0/+11
| | | | | | Added a helper method to check if required parameters are given in an API call. Can be used to return a `400 Bad Request` return code if a required attribute is missing. Code clean up and fixed tests.
* API: extracted helper method to provide 400 bad request error with descriptionSebastian Ziebell2013-02-131-0/+6
| | | | | | Extracted a method for 400 error (Bad request) and adjusted code accordingly. The name of the missing attribute is used to show which one was missing from the request. It is used to give an appropriate message in the json response.
* Fix namespace api autocompleteDmitriy Zaporozhets2012-12-121-5/+14
|
* Deprecate code for Project. Use title and pathDmitriy Zaporozhets2012-11-231-1/+1
|
* API: private token via headerValeriy Sizov2012-10-021-1/+1
|
* #1606 FixesValeriy Sizov2012-10-021-1/+1
|
* #1606 API private token via the headerValeriy Sizov2012-10-021-1/+1
|
* #1585 Api for user creation: base implementationValeriy Sizov2012-10-021-0/+4
|
* APi for commits. Better api docsDmitriy Zaporozhets2012-09-211-1/+1
|
View Lorry Controller Status