| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | More backport | Douwe Maan | 2017-02-06 | 2 | -32/+131 |
| | | |||||
| * | Fix build access policies when pipelines are public | Grzegorz Bizon | 2017-01-23 | 1 | -0/+93 |
| | | |||||
| * | More improvements to presenters23563-document-presenters | Rémy Coutable | 2017-01-18 | 1 | -2/+2 |
| | | | | | Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
| * | Handle presenters in BasePolicy | Rémy Coutable | 2017-01-18 | 1 | -0/+17 |
| | | | | | Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
| * | Include group parents into read access for project and group | Dmitriy Zaporozhets | 2016-12-26 | 1 | -0/+66 |
| | | | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> | ||||
| * | Add missing group policy specdz-add-group-policy-spec | Dmitriy Zaporozhets | 2016-12-15 | 1 | -0/+108 |
| | | | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> | ||||
| * | Update effected testszj-guest-reads-public-builds | Z.J. van de Weg | 2016-12-04 | 1 | -16/+16 |
| | | |||||
| * | Guests can read builds if those are public | Z.J. van de Weg | 2016-12-04 | 1 | -7/+29 |
| | | | | | Fixes #18448 | ||||
| * | Improve ProjectPolicy spec to check permissions when wiki is disabled | Douglas Barbosa Alexandre | 2016-11-30 | 1 | -2/+12 |
| | | |||||
| * | Added tests for IssuePolicy | Yorick Peterse | 2016-11-07 | 1 | -0/+119 |
| | | |||||
| * | Allow owners to fetch source code in CI buildsallow-owner-to-run-ci-builds | Kamil Trzcinski | 2016-11-01 | 1 | -0/+14 |
| | | | | | Due to different way of handling owners of a project, they were not allowed to fetch CI sources for project. | ||||
| * | Add specs for a user from a group link23872-members-of-group-that-has-project-access-getting-404-on-accessing-a-project-issue | Sean McGivern | 2016-10-28 | 1 | -0/+30 |
| | | |||||
| * | Fix project member access for group links | Sean McGivern | 2016-10-28 | 1 | -0/+163 |
| | | | | | | | | | | | | | | | | | `ProjectTeam#find_member` doesn't take group links into account. It was used in two places: 1. An admin view - it can stay here. 2. `ProjectTeam#member?`, which is often used to decide if a user has access to view something. This second part broke confidential issues viewing. `IssuesFinder` ends up delegating to `Project#authorized_for_user?`, which does consider group links, so users with access to the project via a group link could see confidential issues on the index page. However, `IssuesPolicy` used `ProjectTeam#member?`, so the same user couldn't view the issue when going to it directly. | ||||
| * | Make guests unable to view MRsguests_cant_see_mrs | Valery Sizov | 2016-10-11 | 1 | -2/+3 |
| | | |||||
| * | Improve project policy spec | Alejandro Rodríguez | 2016-10-06 | 1 | -16/+131 |
| | | |||||
| * | Test if issue authors can access private projects | Felipe Artur | 2016-09-20 | 1 | -0/+13 |
| | | |||||
| * | add project_policy_spec to replace .project_abilities spec | http://jneen.net/ | 2016-08-30 | 1 | -0/+36 |
 |
index : delta/gitlab/gitlab-ce.git | |
| gitlab.com: gitlab-org/gitlab-ce.git |
| summaryrefslogtreecommitdiff |