Use BlobHelper#content_type instead of #mime_type. (!4638) · Merge requests · Import/Export Testing Group / gitlabhq_1618880758

Matthias Käppler requested to merge github/fork/knu/blob_content_type into master Jul 25, 2013

Created by: knu

This provides Content-Type with a proper charset, and plugs a security hole that a raw HTML file is served with a browser executable MIME type (text/html) from the same domain where users are authenticated.

Admin message

Admin message

Use BlobHelper#content_type instead of #mime_type.

Merge request reports