Tue, 08 Jan 2019 13:02:34 +0100 |
Mads Kiilerich |
middleware: don't allow trailing text after Git commands
|
Mon, 07 Jan 2019 02:08:35 +0100 |
Mads Kiilerich |
middleware: remove access fallback to reuse previous access - drop _git_stored_op
|
Mon, 07 Jan 2019 01:58:16 +0100 |
Mads Kiilerich |
middleware: fix handling of Git 'info/refs' command to give correct access control
|
Mon, 07 Jan 2019 01:50:56 +0100 |
Mads Kiilerich |
middleware: move handling of permanent repo URLs to separate middleware
|
Mon, 07 Jan 2019 00:00:18 +0100 |
Mads Kiilerich |
middleware: drop fix_PATH
|
Sun, 26 May 2019 22:41:36 +0200 |
Mads Kiilerich |
setup: support Mercurial 5.0
|
Mon, 27 May 2019 00:12:15 +0200 |
Mads Kiilerich |
hg: prepare for Mercurial 5.0 changing "exact" arguments
|
Mon, 27 May 2019 00:17:32 +0200 |
Mads Kiilerich |
hg: prepare for Mercurial 5.0 renaming memfilectx `copied` to `copysource` - add backwards compat wrapper
|
Sun, 26 May 2019 23:20:58 +0200 |
Mads Kiilerich |
setup: bump Mercurial minimum version to 4.5 - that allow us to drop some hacks, and it was released more than one year ago
|
Wed, 01 May 2019 22:44:51 +0200 |
Mads Kiilerich |
setup: drop support for Python 2.6
|
Sun, 26 May 2019 23:25:04 +0200 |
Mads Kiilerich |
vcs: drop exceptionhandling in utils.imports.import_class - it is over-engineered and just make debugging harder
|
Mon, 07 Jan 2019 00:00:22 +0100 |
Mads Kiilerich |
middleware: drop special handling of hg RepoError
|
Sun, 06 Jan 2019 21:45:34 +0100 |
Mads Kiilerich |
middleware: simplify pygrack wrapping - there is no need for any extras
|
Fri, 04 Jan 2019 03:51:45 +0100 |
Mads Kiilerich |
auth: drop authenticating_api_key from AuthUser
|
Fri, 04 Jan 2019 03:51:38 +0100 |
Mads Kiilerich |
auth: move CSRF checks from the optional LoginRequired to the more basic BaseController._before
|
Fri, 04 Jan 2019 03:42:23 +0100 |
Mads Kiilerich |
auth: simplify API key auth - move it out of _determine_auth_user
|
Fri, 04 Jan 2019 03:42:17 +0100 |
Mads Kiilerich |
tests: prepare for adding CSRF protection on login forms
|
Wed, 23 Jan 2019 00:56:18 +0100 |
Mads Kiilerich |
tests: make test_admin_users user_and_repo_group_fail() fixture more stable
|
Wed, 23 Jan 2019 01:49:30 +0100 |
Mads Kiilerich |
tests: Change test_delete_repo_group_err to use the values from user_and_repo_group_fail fixture
|
Mon, 08 Apr 2019 00:11:20 +0200 |
Mads Kiilerich |
auth: make User.get_by_api_key more strict about only returning active non-default users
|
Thu, 03 Jan 2019 01:22:56 +0100 |
Mads Kiilerich |
auth: move IP check to AuthUser.make - it is more about accepting authentication than about permissions after authentication
|
Thu, 03 Jan 2019 01:22:45 +0100 |
Mads Kiilerich |
auth: introduce AuthUser.make factory which can return None if user can't be authenticated
|
Sun, 07 Apr 2019 23:44:17 +0200 |
Mads Kiilerich |
auth: remove AuthUser __init__ magic for fallback to default user instead of the requested user
|
Thu, 03 Jan 2019 01:22:06 +0100 |
Mads Kiilerich |
auth: drop unused AuthUser.is_authenticated
|
Sun, 07 Apr 2019 23:35:23 +0200 |
Mads Kiilerich |
auth: use other and better checks than is_authenticated
|
Thu, 03 Jan 2019 01:16:36 +0100 |
Mads Kiilerich |
auth: drop api_access_controllers_whitelist and give API key auth same access as other kinds of auth
|
Mon, 31 Dec 2018 02:32:23 +0100 |
Mads Kiilerich |
auth: refactor auth computation, introducing bump_permission helper function
|
Sat, 29 Dec 2018 19:16:56 +0100 |
Mads Kiilerich |
auth: drop "multiple_counter" from computing permissions
|
Sat, 29 Dec 2018 18:55:01 +0100 |
Mads Kiilerich |
auth: minor refactoring of computation of admin access for repo owners
|
Sat, 29 Dec 2018 18:39:46 +0100 |
Mads Kiilerich |
auth: drop the internal "explicit" flag - the new default is all we want; explicit permissions should never blindly overrule indirect permissions
|