Age | Commit message (Collapse) | Author |
|
[ci skip]
|
|
[ci skip]
|
|
[ci skip]
|
|
[ci skip]
|
|
|
|
[ci skip]
|
|
[ci skip]
|
|
Restrict arbitrary protocol redirection to only https or http URLs
See merge request https://gitlab.com/gitlab-org/security/gitlab-pages/-/merge_requests/57
Merged-by: Ahmad Tolba <atolba@gitlab.com>
Approved-by: Jaime Martinez <jmartinez@gitlab.com>
Co-authored-by: ngala <ngala@gitlab.com>
|
|
This commit restricts arbitrary protocol redirection to only https or http URLs and introduces nolint: gocyclo for auth.handleProxyingAuth method.
Changelog: security
|
|
[ci skip]
|
|
[ci skip]
|
|
Release v1.62.0
See merge request gitlab-org/gitlab-pages!828
|
|
|
|
|
|
|
|
|
|
Add a Default MR template to replace the setting
See merge request gitlab-org/gitlab-pages!825
|
|
|
|
Fix wait group add order in test
Closes #800
See merge request gitlab-org/gitlab-pages!824
|
|
Don't redirect acme challenge
Closes #649
See merge request gitlab-org/gitlab-pages!819
|
|
Changelog: fixed
|
|
|
|
Move test cache config into testhelpers
Closes #799
See merge request gitlab-org/gitlab-pages!823
|
|
This reduces some code duplication.
Closes https://gitlab.com/gitlab-org/gitlab-pages/-/issues/799
|
|
chore: log ZIP archive corruption error
See merge request gitlab-org/gitlab-pages!821
|
|
Fix data race with lookup paths
See merge request gitlab-org/gitlab-pages!822
|
|
Since the API response for domains is cached, it's possible that
multiple clients for the same host may cause a data race when sorting
the lookup paths. To ensure this doesn't happen, we sort the lookup
paths once before we cache it.
Relates to https://gitlab.com/gitlab-org/gitlab-pages/-/issues/646
Changelog: fixed
|
|
When a ZIP file cannot be opened for some reason, we previously would
discard the error after attempting to retrieve it from the
cache. While this error is logged in another message, it would be
helpful to have the same message tied with the "archive corrupted" log
entry.
Relates to https://gitlab.com/gitlab-org/gitlab-pages/-/issues/690
Changelog: changed
|
|
Release 1.61.1
See merge request gitlab-org/security/gitlab-pages!47
|
|
|
|
|
|
Update LabKit library to v1.16.0
See merge request gitlab-org/gitlab-pages!813
|
|
* include original address in correlation CIDR checks ([ae96001](https://gitlab.com/gitlab-org/labkit/commit/ae9600163a6f5fa2ad06676a00b310af36573df4))
* run make recipes in parallel during backward compat check ([efa9c71](https://gitlab.com/gitlab-org/labkit/commit/efa9c71e13ef2bfe4415278e6b1e5c5ee8cc8022))
See https://gitlab.com/gitlab-org/labkit/-/releases/v1.16.0
Changelog: changed
|
|
Revert "Merge branch 'perf/lazy-open-serve' into 'master'"
See merge request gitlab-org/gitlab-pages!816
|
|
This reverts merge request
https://gitlab.com/gitlab-org/gitlab-pages/-/merge_requests/803
because it caused an incident when serving large compressed files
Changelog: fixed
|
|
Include remote address through X-Forwarded-For in job artifact request
See merge request gitlab-org/security/gitlab-pages!38
|
|
perf: open files lazily when serving content
See merge request gitlab-org/gitlab-pages!803
|
|
Changelog: performance
|
|
Changelog: security
|
|
feat: remove rate limits feature flags
See merge request gitlab-org/gitlab-pages!788
|
|
ci: run dependency and license scanner on MRs only if go.mod changed
See merge request gitlab-org/gitlab-pages!783
|
|
Enable FF_ENABLE_PLACEHOLDERS by default
Closes #619
See merge request gitlab-org/gitlab-pages!807
|
|
Changelog: removed
|
|
test: replace custom extraEnv with native t.setEnv
See merge request gitlab-org/gitlab-pages!810
|
|
perf: null out zip reader after reading archive
See merge request gitlab-org/gitlab-pages!804
|
|
|
|
|
|
|
|
|
|
feat: add tls support to gitlab stub server
See merge request gitlab-org/gitlab-pages!809
|