Commits · 12e0fee2e557b3f7e52744e778ebf0f28a8a600e · gpt / large_projects / gitlabhq1

Sep 04, 2019
- Avoid calling freeze on already frozen strings in app/services · ee1633e3
  dineshpanda authored 5 years ago
  
  ee1633e3
Sep 03, 2019

If user can push to docker then it can delete too · f5b28994

Giorgenes Gelatti authored 5 years ago and

Thong Kuah committed 5 years ago

Extends the permission of $CI_REGISTRY_USER to allow them
to delete tags in addition to just pushing.

https://gitlab.com/gitlab-org/gitlab-ce/issues/40096

f5b28994

Aug 01, 2019
- Backport of https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/3809 · f519a4b7
  Valery Sizov authored 5 years ago
  
  Introducing Docker Registry replication
  f519a4b7
Mar 18, 2019
- Add support for deleting images in registry 2.7 · eadee27a
  Peter Bábics authored 6 years ago
  
  eadee27a
Feb 07, 2019
- Update comment about legacy pipeline triggers · 6d74a667
  Dmitriy Zaporozhets authored 6 years ago
  
  Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
  6d74a667
Nov 01, 2018
- Fix typos in comments and specs · 733ae949
  George Tsiolis authored 6 years ago
  
  733ae949
Aug 01, 2018
- Support multiple scopes when using authing container registry scopes · 34ec29b9
  Kamil Trzcińśki authored 6 years ago
  
  34ec29b9
Jul 16, 2018
- Enable frozen string in apps/services/**/*.rb · 265478ad
  gfyoung authored 6 years ago
  
  For directories application_settings --> labels. Partially addresses #47424.
  265478ad
Apr 10, 2018
- Verify that deploy token has valid access when pulling container registry image · 3e35f653
  Mayra Cabrera authored 6 years ago
  
  3e35f653
Apr 07, 2018
- Addresses database comments · 29913816
  Mayra Cabrera authored 6 years ago
  
  - Adds a default on expires_at datetime - Modifies deploy tokens views to handle default expires at value - Use datetime_with_timezone where possible - Remove unused scopes
  29913816
- Increase test suite around deploy tokens behavior · c4f56a88
  Mayra Cabrera authored 6 years ago
  
  Also, fixes broken specs
  c4f56a88
- Include ProjectDeployTokens · 8315861c
  Mayra Cabrera authored 6 years ago
  
  Also: - Changes scopes from serializer to use boolean columns - Fixes broken specs
  8315861c
- Support Deploy Tokens properly without hacking abilities · 72220a99
  Kamil Trzcińśki authored 6 years ago and Mayra Cabrera committed 6 years ago
  
  72220a99
- Removes logic from Jwt and handle different scenarios on Gitlab::Auth · 7deab317
  Mayra Cabrera authored 6 years ago
  
  - When using 'read_repo' password and project are sent, so we used both of them to fetch for the token - When using 'read_registry' only the password is sent, so we only use that for fetching the token
  7deab317
Feb 02, 2018
- use Gitlab::UserSettings directly as a singleton instead of including/extending it · eaada9d7
  Mario de la Ossa authored 7 years ago
  
  eaada9d7
Oct 10, 2017
- refactor access handling · b2acb3c7
  Vratislav Kalenda authored 7 years ago
  
  b2acb3c7
Oct 08, 2017
- remove whitespace · cd3fa2a7
  Vratislav Kalenda authored 7 years ago
  
  cd3fa2a7
- Issue JWT token with registry:catalog:* scope when requested by GitLab admin · 74d37438
  Vratislav Kalenda authored 7 years ago
  
  74d37438
Aug 31, 2017

`current_application_settings` belongs on `Gitlab::CurrentSettings` · 5883ce95

Sean McGivern authored 7 years ago

The initializers including this were doing so at the top level, so every object
loaded after them had a `current_application_settings` method. However, if
someone had rack-attack enabled (which was loaded before these initializers), it
would try to load the API, and fail, because `Gitlab::CurrentSettings` didn't
have that method.

To fix this:

1. Don't include `Gitlab::CurrentSettings` at the top level. We do not need
   `Object.new.current_application_settings` to work.
2. Make `Gitlab::CurrentSettings` explicitly `extend self`, as we already use it
   like that in several places.
3. Change the initializers to use that new form.

5883ce95

Aug 07, 2017

Rename user_can_admin? because it's more accurate · 64aa9e21

Lin Jen-Shin authored 7 years ago

Also fix the test because we no longer have :empty_project,
just use :project is the same as before

64aa9e21

May 29, 2017
- fix typo and check · d890c6e8
  Jean Praloran authored 7 years ago
  
  d890c6e8
- add test and rebase · 6c9da292
  Jean Praloran authored 7 years ago
  
  6c9da292
- change ability requirement · 8ef46b9f
  Jean Praloran authored 8 years ago
  
  8ef46b9f
- add star for action scope, in order to delete image from registry · fcca3e6e
  jean authored 8 years ago
  
  fcca3e6e
Mar 31, 2017
- Add test example for invalid registry access request · 4726ff9d
  Grzegorz Bizon authored 7 years ago
  
  4726ff9d
- Add specs for container repository factory method · 60cdd2bc
  Grzegorz Bizon authored 7 years ago
  
  60cdd2bc
Mar 30, 2017

Do not allow registry requests for invalid repositories · cf042068
Grzegorz Bizon authored 7 years ago

cf042068

Create container repository on successful push auth · 7d3d1ec5

Grzegorz Bizon authored 7 years ago

Because we do not have yet two way communication between container
registry and GitLab, we need to eagerly create a new container
repository objects in database. We now do that after user/build
successfully authenticates a push action using auth service.

7d3d1ec5

Mar 29, 2017
- Add comment to container registry auth service · 4407d3cf
  Grzegorz Bizon authored 7 years ago
  
  Comment explains why we still have authentication without user object there. The legacy authentication mechanism should be removed in 10.0.
  4407d3cf
- Use container repository path inside auth service · 3bfc05be
  Grzegorz Bizon authored 7 years ago
  
  3bfc05be
Mar 23, 2017
- Rename container image model to container repository · 01d159b4
  Grzegorz Bizon authored 7 years ago
  
  01d159b4
- Fix communication between GitLab and Container Registry · 4005eb64
  Grzegorz Bizon authored 7 years ago
  
  4005eb64
Mar 22, 2017
- Refactor splitting container image full path · 896b13b9
  Grzegorz Bizon authored 7 years ago
  
  [ci skip]
  896b13b9
Mar 21, 2017
- Makes ContainerImages Routable · c64d3630
  Andre Guedes authored 7 years ago
  
  Conflicts: db/schema.rb
  c64d3630
Feb 23, 2017
- Enable Style/MutableConstant · b7d8df50
  Douwe Maan authored 8 years ago
  
  b7d8df50
Feb 22, 2017

Fixes broken and missing tests · e4fa80f3
Andre Guedes authored 8 years ago

e4fa80f3

Multi-level container image names backend implementation · dcd4beb8

Andre Guedes authored 8 years ago

  - Adds Registry events API endpoint
  - Adds container_images_repository and container_images models
  - Changes JWT authentication to allow multi-level scopes
  - Adds services for container image maintenance

dcd4beb8

Feb 03, 2017
- replace `find_with_namespace` with `find_by_full_path` · a0586dbc
  Adam Pahlevi authored 8 years ago
  
  add complete changelog for !8949
  a0586dbc
Nov 09, 2016

Merge branch 'unauthenticated-container-registry-access' into 'security' · 32042ef5

Alejandro Rodriguez authored 8 years ago

Restore unauthenticated access to public container registries

Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/24284



See merge request !2025

Signed-off-by: Rémy Coutable <remy@rymai.me>

Verified

32042ef5

Merge branch 'fix-unathorized-cloning' into 'security' · b0bf9214

Douwe Maan authored 8 years ago

Ensure external users are not able to clone disabled repositories.

Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/23788



See merge request !2017

Signed-off-by: Rémy Coutable <remy@rymai.me>

Verified

b0bf9214

Admin message

Admin message