Fix CORS and add implicit grant (!6078) · Merge requests · GitLab.org / GitLab FOSS · GitLab

Do not update/delete: Banner broadcast message test data

Do not update/delete: Notification broadcast message test data

username-removed-3521 requested to merge medokin/gitlab-ce:master into master Aug 29, 2016

What does this MR do?

Adds missing CORS header and enables implicit oauth grant flow.

Why was this MR needed?

Web clients cannot login with oauth or password and are not allowed to use pagination X-Headers.

Does this MR meet the acceptance criteria?

CHANGELOG entry added
Tests
- All builds are passing
Conform by the style guides
Branch has no merge conflicts with master (if you do - rebase it please)
Squashed related commits together

What are the relevant issue numbers?

Fixes #19470 (closed), #20628 (closed), #2716 (closed)