gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author
2018-06-20	Operations and Kubernetes items are now omitted in the sidebar when ↵	Tiago Botelho
	repository or builds are disabled
2018-06-06	policy	Mark Chao

2018-06-01	Rephrase "maintainer" to more precise "members who can merge to the target ↵	Mark Chao
	branch" "Maintainer" will be freed to be used for #42751
2018-05-16	Refactor out duplication in runner_policy.rb	Dylan Griffith

2018-05-16	Change policy list_runner_jobs -> read_runner	Dylan Griffith

2018-05-16	Rename User#ci_authorized_runners -> ci_owned_runners	Dylan Griffith

2018-05-16	Improve efficiency of authorized_runner policy query	Dylan Griffith

2018-05-16	Use can? policies for lib/api/runners.rb	Dylan Griffith

2018-05-15	Enable update_(build\|pipeline) for maintainers	Jan Provaznik

2018-05-10	Allows `access_(git\|api)` to anonymous users	Bob Van Landuyt
	The `access_git` and `access_api` were currently never checked for anonymous users. And they would also be allowed access: An anonymous user can clone and pull from a public repo An anonymous user can request public information from the API So the policy didn't actually reflect what we were enforcing.
2018-05-10	Block access to API & git when terms are enforced	Bob Van Landuyt
	When terms are enforced, but the user has not accepted the terms access to the API & git is rejected with a message directing the user to the web app to accept the terms.
2018-05-07	Adds remote mirror table migration	Tiago Botelho

2018-05-04	Enforces terms in the web application	Bob Van Landuyt
	This enforces the terms in the web application. These cases are specced: - Logging in: When terms are enforced, and a user logs in that has not accepted the terms, they are presented with the screen. They get directed to their customized root path afterwards. - Signing up: After signing up, the first screen the user is presented with the screen to accept the terms. After they accept they are directed to the dashboard. - While a session is active: - For a GET: The user will be directed to the terms page first, after they accept the terms, they will be directed to the page they were going to - For any other request: They are directed to the terms, after they accept the terms, they are directed back to the page they came from to retry the request. Any information entered would be persisted in localstorage and available on the page.
2018-05-04	Allow a user to accept/decline terms	Bob Van Landuyt
	When a user accepts, we store this in the agreements to keep track of which terms they accepted. We also update the flag on the user.
2018-05-04	Make the user dropdown reusable	Bob Van Landuyt
	We will reuse the the dropdown, but exclude some menu items based on permissions. So moving the menu to a partial, and adding checks for each menu item here.
2018-04-23	Fix users not seeing labels from private groups when being a member of a ↵	Felipe Artur
	child project
2018-04-11	Prevent awarding emoji when a project is archived	Bob Van Landuyt
	This prevents performing the requests, and disables all emoji reaction buttons
2018-04-11	Rename `create_merge_request` permissions	Bob Van Landuyt
	So we can distinguish between the permissions on the source and the target project. - `create_merge_request_from` indicates a user can create a merge request with the project as a source_project - `create_merge_request_in` indicates a user can create a merge request with the project as a target_project
2018-04-11	Prevent new merge requests for archived projects	Bob Van Landuyt
	This prevents creating merge requests targeting archived projects. This could happen when a project was already forked, but then the source was archived.
2018-04-10	Move `ProjectPolicy`-class methods into module	Bob Van Landuyt
	That way the ProjectPolicy class can be extended with this module before we prepend the EE::ProjectPolicy. This makes the classmethods available for rules defined in the EE::ProjectPolicy.
2018-04-10	Update policies to make archived projects completely read-only	Douwe Maan

2018-04-10	Remove edit_note and update_note abilities in favor of admin_note	Douwe Maan

2018-04-10	Rename delete_protected_branch ability to push_to_delete_protected_branch to ↵	Douwe Maan
	prevent confusion with destroy_protected_branch
2018-04-07	Support Deploy Tokens properly without hacking abilities	Kamil Trzciński

2018-04-07	Addreses backend review suggestions	Mayra Cabrera
	- Remove extra method for authorize_admin_project - Ensure project presence - Rename 'read_repo' to 'read_repository' to be more verbose
2018-04-07	Removes logic from Jwt and handle different scenarios on Gitlab::Auth	Mayra Cabrera
	- When using 'read_repo' password and project are sent, so we used both of them to fetch for the token - When using 'read_registry' only the password is sent, so we only use that for fetching the token
2018-04-05	Fix N+1 in MergeRequestParser	Sean McGivern
	read_project can be prevented by a very expensive condition, which we want to avoid, while still not writing manual SQL queries. read_project_for_iids is used by read_issue_iid and read_merge_request_iid to satisfy both of those constraints, and allow the declarative policy runner to use its normal caching strategy.
2018-03-26	Revert exploratory branch restriction policy	James Edwards-Jones

2018-03-26	ProtectedBranchPolicy used from Controller for destroy/update	James Edwards-Jones

2018-03-26	Branch unprotection restriction starting point	James Edwards-Jones
	Explored Policy framework to create something I can use as a starting point.
2018-03-07	Limit queries to a user-branch combination	Bob Van Landuyt
	The query becomes a lot simpler if we can check the branch name as well instead of having to load all branch names.
2018-03-07	Allow maintainers to edit directly in a fork	Bob Van Landuyt

2018-03-07	Allow abilities on forks while MR is open	Bob Van Landuyt
	When an MR is created using `allow_maintainer_to_push`, we enable some abilities while the MR is open. This should allow every user with developer abilities on the target project, to push to the source project.
2018-03-03	Bring one group board to CE	Felipe Artur

2018-02-22	Port `read_cross_project` ability from EE	Bob Van Landuyt

2018-02-09	Merge branch ↵	Douwe Maan
	'security-10-4-25223-snippets-finder-doesnt-obey-feature-visibility' into 'security-10-4' [Port for security-10-4]: Makes SnippetFinder ensure feature visibility
2018-02-01	Hide pipeline schedule 'take ownership' for current owner	Mark Fletcher

2018-01-05	Remove unused push_code_to_protected_branches	Lin Jen-Shin

2018-01-04	EE-BACKPORT group boards	Felipe Artur

2017-12-13	Refactor common protected ref check	Stan Hu

2017-12-13	Fix conditions for checking pipeline schedule rules	Stan Hu

2017-12-13	Create a play_pipeline_schedule policy and use it	Stan Hu

2017-12-07	Support uploads for groups	Jarka Kadlecova

2017-11-23	Introduce :read_namespace access policy for namespace and group	Tomasz Maczukin

2017-11-07	Merge branch 'master' into fix/sm/31771-do-not-allow-jobs-to-be-erased-new	Shinya Maeda

2017-11-06	Add doc. Fix spec. Add erase_build in protected_ref rule	Shinya Maeda

2017-11-06	Do not allow jobs to be erased	Shinya Maeda

2017-10-23	This works	Shinya Maeda

2017-10-06	Merge branch ↵	Kamil Trzciński
	'feature/sm/35954-create-kubernetes-cluster-on-gke-from-k8s-service' into 'master' Create Kubernetes cluster on GKE from k8s service Closes #35954 See merge request gitlab-org/gitlab-ce!14470
2017-10-05	Cluster can be read only by master	Kamil Trzcinski