Merge branch 'security-github-ssrf-redirect-12-1' into '12-1-stable'

Do not allow localhost url redirection in GitHub Integration See merge request gitlab/gitlabhq!3223
author: GitLab Release Tools Bot <robert+release-tools@gitlab.com> 2019-07-24 20:46:08 +0300
committer: GitLab Release Tools Bot <robert+release-tools@gitlab.com> 2019-07-24 20:46:08 +0300
commit: d7895cd4f49dd7db169de4607de5ec93c5d4176e (patch)
tree: 2d0bafcad8892693aa4f528235fa49b58822eb9d /config
parent: 1a0a6e62d09523cd17e86bff321ce6626013ed44 (diff)
parent: 66ae39ce946b30fa961856df1f33f77be0586db0 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/config/initializers/octokit.rb b/config/initializers/octokit.rb
new file mode 100644
index 00000000000..b3749258ec5
--- /dev/null
+++ b/config/initializers/octokit.rb
@@ -0,0 +1 @@
+Octokit.middleware.insert_after Octokit::Middleware::FollowRedirects, Gitlab::Octokit::Middleware
author	GitLab Release Tools Bot <robert+release-tools@gitlab.com>	2019-07-24 20:46:08 +0300
committer	GitLab Release Tools Bot <robert+release-tools@gitlab.com>	2019-07-24 20:46:08 +0300
commit	d7895cd4f49dd7db169de4607de5ec93c5d4176e (patch)
tree	2d0bafcad8892693aa4f528235fa49b58822eb9d /config
parent	1a0a6e62d09523cd17e86bff321ce6626013ed44 (diff)
parent	66ae39ce946b30fa961856df1f33f77be0586db0 (diff)