Whitelisted query limits for group destroy API

2060533f · Jan Provaznik · 8c0166f2 · 2060533f · 2060533f
Commit 2060533f authored May 11, 2018 by Jan Provaznik
Show whitespace changes
Inline Side-by-side

Showing with 2 additions and 0 deletions

lib/api/groups.rb lib/api/groups.rb +1 -0

lib/api/v3/groups.rb lib/api/v3/groups.rb +1 -0

No files found.
--- a/lib/api/groups.rb
+++ b/lib/api/groups.rb
@@ -165,6 +165,7 @@ module API
        group = find_group!(params[:id])
        authorize! :admin_group, group

+        Gitlab::QueryLimiting.whitelist('https://gitlab.com/gitlab-org/gitlab-ce/issues/46285')
        destroy_conditionally!(group) do |group|
          ::Groups::DestroyService.new(group, current_user).execute
        end

--- a/lib/api/v3/groups.rb
+++ b/lib/api/v3/groups.rb
@@ -131,6 +131,7 @@ module API
        delete ":id" do
          group = find_group!(params[:id])
          authorize! :admin_group, group
+          Gitlab::QueryLimiting.whitelist('https://gitlab.com/gitlab-org/gitlab-ce/issues/46285')
          present ::Groups::DestroyService.new(group, current_user).execute, with: Entities::GroupDetail, current_user: current_user
        end