Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/spec/policies
AgeCommit message (Collapse)Author
2020-02-25Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-02-18Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-02-11Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-02-06Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-02-05Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-02-04Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-02-04Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-01-31Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-01-23Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-01-20Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-01-16Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-01-14Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-01-13Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-12-17Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-12-17Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-12-16Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-12-10Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-11-30Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-11-26Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-11-08Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-11-07Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-11-06Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-10-30Merge dev.gitlab.org@master into GitLab.com@masterYorick Peterse
2019-10-29Improper access control allows the attacker to comment in internal commit ↵Charlie Ablett
after they are no longer admin
2019-10-29Merge branch 'security-developer-transfer-project' into 'master'GitLab Release Tools Bot
Require Maintainer permission on group where project is transferred to See merge request gitlab/gitlabhq!3420
2019-10-25Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-10-18Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-10-17Add latest changes from gitlab-org/gitlab@masterlistGitLab Bot
2019-10-17Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-10-16Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-10-14Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-10-11Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-10-10Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-10-09Require maintainer permission to transfer projectsmanojmj
2019-10-06Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-10-02Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-09-30Add policy check if cross reference system notes are accessibleAlexandru Croitor
2019-09-30Filter not accessible label eventsJan Provaznik
Label events may use cross-project or cross-group references, if the projects are not accessible by user, we don't show these label events.
2019-09-04Let project reporters create issue from group boardsFelipe Artur
The current state of group issue boards does not show the "Add issues" button on the UI for users that are reporters of group child projects.
2019-08-30Merge branch 'master' of dev.gitlab.org:gitlab/gitlabhqRobert Speicher
2019-08-30Merge branch 'security-2853-prevent-comments-on-private-mrs' into 'master'GitLab Release Tools Bot
Ensure only authorised users can create notes on merge requests and issues See merge request gitlab/gitlabhq!3137
2019-08-26Guard against deleted project feature entryStan Hu
In https://gitlab.com/gitlab-org/gitlab-ce/issues/66482, we see that a project's `project_feature` association may be lazily loaded and hence return `nil` if the entry is deleted if the `Project` is already loaded in memory. To ensure we don't fail hard when this happens, assume all features are disabled. We can fix this issue by eager loading the `project_feature` in https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/32169, but we shouldn't have to depend on that. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/66482
2019-08-23Expose namespace storage statistics with GraphQLAlessio Caiazza
Root namespaces have storage statistics. This commit allows namespace owners to get those stats via GraphQL queries like the following one { namespace(fullPath: "a_namespace_path") { rootStorageStatistics { storageSize repositorySize lfsObjectsSize buildArtifactsSize packagesSize wikiSize } } }
2019-08-14Merge remote-tracking branch ↵John T Skarbek
'dev/security-2873-restrict-slash-commands-to-users-who-can-log-in'
2019-08-12Improve cluster policy spec coverageThong Kuah
2019-08-07Prevent unauthorised comments on merge requestsAlex Kalderimis
* Prevent creating notes on inaccessible MRs This applies the notes rules at the MR scope. Rather than adding extra rules to the Project level policy, preventing :create_note here is better since it only prevents creating notes on MRs. * Prevent creating notes in inaccessible Issues without this policy, non-team-members are allowed to comment on issues even when the project has the private-issues policy set. This means that without this change, users are allowed to comment on issues that they cannot read. * Add CHANGELOG entry
2019-07-25Remove code related to object hierarchy in MySQLHeinrich Lee Yu
These are not required because MySQL is not supported anymore
2019-07-24Allowing all users to view historyAlex Kalderimis
This removes the create_wiki permission check from the history controller, allowing show and history to have the same level of permissions. Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/29528
2019-07-19Style rules; Revert some examplesFabio Papa
2019-07-19Add examples specing the setting to choose who can create subgroupsFabio Papa
This setting is at the group level only. The default is specified to be maintainers and owners. **Specs only**, all failing.
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-31 07:20:58 +0300