Commits · b1c39553859bb1f5f830fa759f2202462fe24d98 · projects.thm.de / GitLab

19 Dec, 2018 1 commit

Rename GroupHierarchy into ObjectHierarchy · b1c39553

Jarka Košanová authored Dec 18, 2018

- we now use the hierarchy class also for epics
- also rename supports_nested_groups? into supports_nested_objects?
  - move it to a concern

b1c39553

19 Sep, 2018 1 commit

Enable frozen string in app/controllers/**/*.rb · 73322a0e

gfyoung authored Sep 13, 2018

Enables frozen string for the following:

* app/controllers/*.rb
* app/controllers/admin/**/*.rb
* app/controllers/boards/**/*.rb
* app/controllers/ci/**/*.rb
* app/controllers/concerns/**/*.rb

Partially addresses #47424.

73322a0e

11 Sep, 2018 1 commit

Disable existing offenses for the CodeReuse cops · 2039c828

Yorick Peterse authored Aug 27, 2018

This whitelists all existing offenses for the various CodeReuse cops, of
which most are triggered by the CodeReuse/ActiveRecord cop.

2039c828

06 Jul, 2018 1 commit

Preload ancestors after pagination when filtering · de35c044

Bob Van Landuyt authored Jul 05, 2018

We need to preload the ancestors of search results after applying
pagination limits. This way the search results itself are paginated,
but not the ancestors.

If we don't do this, we might not preload a parent group of a search
result as it has been cut off by pagination.

de35c044

04 Apr, 2018 1 commit
- [Rails5] Rename `sort` methods to `sort_by_attribute` · 3d3b46f3
  blackst0ne authored Apr 04, 2018
  
  3d3b46f3
22 Jan, 2018 1 commit

Fix filter on `dashboard/groups` & `explore/groups · c56326fc

Bob Van Landuyt authored Jan 19, 2018

When searching we would limit the scope of ancestors to load because
the filter would be applied to the ancestors. Instead, we need to load
_all_ ancestors for matching projects.

c56326fc

11 Jan, 2018 1 commit
- Adds Rubocop rule for line break around conditionals · 729f05f0
  🙈 jacopo beschi 🙉 authored Jan 11, 2018
  
  729f05f0
22 Nov, 2017 1 commit
- Move ModuleWithInstanceVariables to Gitlab namespace · 07d3d447
  Lin Jen-Shin authored Nov 22, 2017
```
And use .rubocop.yml to exclude paths we don't care,
rather than using the cop itself to exclude.
```
  07d3d447
17 Nov, 2017 1 commit
- Use StrongMemoize and enable/disable cops properly · 9ac0c76b
  Lin Jen-Shin authored Nov 17, 2017
  
  9ac0c76b
12 Oct, 2017 1 commit
- Pass `archived:` as a keyword argument · 18907efb
  Bob Van Landuyt authored Oct 11, 2017
  
  18907efb
11 Oct, 2017 1 commit
- Fix spinach features · bd8943f5
  Bob Van Landuyt authored Oct 11, 2017
```
And several other failures
```
  bd8943f5
09 Oct, 2017 1 commit
- Only expand ancestors when searching · 524f6515
  Bob Van Landuyt authored Oct 09, 2017
```
Not all_groups, since that would expose groups the user does not have
access to
```
  524f6515
05 Oct, 2017 2 commits
- Load counts everywhere we render a group tree · 951abe2b
  Bob Van Landuyt authored Oct 05, 2017
  
  951abe2b
- Make sure all ancestors are loaded when searching groups · ec8a7a36
  Bob Van Landuyt authored Oct 04, 2017
  
  ec8a7a36
04 Oct, 2017 6 commits
- Stylize `GroupTree` concern · 9870453e
  Bob Van Landuyt authored Oct 02, 2017
  
  9870453e
- Search subgroups on dashboard and explore views · ea4e17e2
  Bob Van Landuyt authored Sep 14, 2017
  
  ea4e17e2
- Reuse the groups tree for explore and dashboard. · 3a4dc55f
  Bob Van Landuyt authored Sep 13, 2017
  
  3a4dc55f
- Use the default sort set by the `Sortable` concern · 39df53ff
  Bob Van Landuyt authored Sep 13, 2017
  
  39df53ff
- Only show root groups on the dashboard · 1fb49b87
  Bob Van Landuyt authored Sep 13, 2017
```
The children are lazy-loaded when expanding
```
  1fb49b87
- Use same response-body in groups-dashboard as we do for group-home · 3e6dd7d8
  Bob Van Landuyt authored Sep 12, 2017
  
  3e6dd7d8
07 Sep, 2017 1 commit
- Removes default scope from sortable · cfd475a4
  Tiago Botelho authored Aug 15, 2017
  
  cfd475a4
08 Jun, 2017 1 commit
- Use group and project finders instead of direct ActiveRecord relations · e56556e1
  Douwe Maan authored Jun 07, 2017
  
  e56556e1
04 May, 2017 1 commit
- Serialize groups as json for Dashboard::GroupsController · 5bce197b
  Dmitriy Zaporozhets authored May 04, 2017
```
Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
```
  5bce197b
01 Mar, 2017 1 commit
- Add filter and sorting to dashboard groups page · b7c30cae
  Dmitriy Zaporozhets authored Mar 01, 2017
```
Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
```
  b7c30cae
08 Feb, 2017 1 commit
- Store group and project full name and full path in routes table · 2989192d
  Dmitriy Zaporozhets authored Feb 04, 2017
```
Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
```
  2989192d
24 Jun, 2016 1 commit

Fix an information disclosure when requesting access to a group containing private projects · aec3475d

Rémy Coutable authored Jun 24, 2016

The issue was with the `User#groups` and `User#projects` associations
which goes through the `User#group_members` and `User#project_members`.

Initially I chose to use a secure approach by storing the requester's
user ID in `Member#created_by_id` instead of `Member#user_id` because I
was aware that there was a security risk since I didn't know the
codebase well enough.

Then during the review, we decided to change that and directly store the
requester's user ID into `Member#user_id` (for the sake of simplifying
the code I believe), meaning that every `group_members` / `project_members`
association would include the requesters by default...

My bad for not checking that all the `group_members` / `project_members`
associations and the ones that go through them (e.g. `Group#users` and
`Project#users`) were made safe with the `where(requested_at: nil)` /
`where(members: { requested_at: nil })` scopes.

Now they are all secure.
Signed-off-by: Rémy Coutable <remy@rymai.me>

aec3475d

19 Mar, 2016 1 commit
- Use the configured Kaminari "per page" default · 085538c2
  Robert Speicher authored Mar 19, 2016
  
  085538c2
30 Apr, 2015 1 commit
- Add a page title to every page. · 26ad2509
  Douwe Maan authored Apr 30, 2015
  
  26ad2509
15 Mar, 2015 1 commit
- Move group leave action from dashboard/groups to groups/group_members. · 84371de0
  Douwe Maan authored Mar 13, 2015
  
  84371de0
12 Mar, 2015 1 commit
- Use same constant for amount of items per page · f0cbbd70
  Dmitriy Zaporozhets authored Mar 12, 2015
  
  f0cbbd70
09 Mar, 2015 1 commit
- Move profile groups page to dashboard · 9b3e156e
  Dmitriy Zaporozhets authored Mar 08, 2015
  
  9b3e156e
14 Sep, 2014 1 commit
- Huge replace of old users_project and users_group references · c69b8e04
  Dmitriy Zaporozhets authored Sep 14, 2014
```
Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
```
  c69b8e04
12 Feb, 2014 1 commit
- User can leave group from group page. · 439a6178
  Ciro Santillli authored Feb 07, 2014
  
  439a6178
19 Jan, 2014 1 commit
- Remove deprecated finders · a3f645ef
  skv authored Jan 19, 2014
  
  a3f645ef
26 Sep, 2013 1 commit

Group ownership completely based on users_groups relation now · 65b9768c

Dmitriy Zaporozhets authored Sep 26, 2013

Before we have only owner_id to determine group owner
With multiple owners per group we should get rid of owner_id in group.
So from now @group.owner will always be nil but
@group.owners return an actual array of users who can admin this group

65b9768c

06 Aug, 2013 1 commit
- Show correct group membership in profile · f8137075
  Dmitriy Zaporozhets authored Aug 06, 2013
  
  f8137075
12 Jul, 2013 2 commits
- Add group button at Profile#groups page · 3232f547
  Dmitriy Zaporozhets authored Jul 12, 2013
  
  3232f547
- Ability to leave group from profile area · acb402a1
  Dmitriy Zaporozhets authored Jul 12, 2013
  
  acb402a1