LFS can be enabled and disabled per project using the API by Masters
and Owners, but the UI is only available to Admins. The interface and
API should be consistent.

LFS can also be enabled and disabled per group using the API by Owners,
but the UI is only available to Admins. This interface should also be
consistent.

Additionally removes an unneeded check if 2FA interface, since the
interface is only available to Owners.

Closes #33320

Add alpine mirrors while operating on k8s cluster

Closes gitlab-ee#4922

See merge request gitlab-org/gitlab-ce!18651

Merge request and commit discussions API

Closes #20901

See merge request gitlab-org/gitlab-ce!18537

Use Ruby methods, not Rails' String#first

See merge request gitlab-org/gitlab-ce!18669

[CE] Exclude LDAP from OmniauthCallbackController base methods

See merge request gitlab-org/gitlab-ce!18619

show only groups an admin is a member of in dashboards/grops

See merge request gitlab-org/gitlab-ce!17884

Gitaly-Ruby is not a Rails application, which made the method not exist
after the vendor. This patch uses direct indexing, which has the same
properties that `#first` has.

Found while working on: https://gitlab.com/gitlab-org/gitaly/merge_requests/699

Update timeline icon for description edit

Closes #39946

See merge request gitlab-org/gitlab-ce!18633

Fix spec/features/projects/issues/user_toggles_subscription_spec.rb

Closes #45918

See merge request gitlab-org/gitlab-ce!18666

Revert discussion counter height

Closes #45896

See merge request gitlab-org/gitlab-ce!18656

Fixed inconsistent protected branch pill baseline

Closes #41286 and #45354

See merge request gitlab-org/gitlab-ce!18409

Sanitize user name to avoid XSS attacks

See merge request gitlab/gitlabhq!2373

Serve archive requests with the correct file in all cases (10.7)

See merge request gitlab/gitlabhq!2376

Sanitize user name to avoid XSS attacks

See merge request gitlab/gitlabhq!2373

Serve archive requests with the correct file in all cases (10.7)

See merge request gitlab/gitlabhq!2376

Skip `authenticate_user!` for Doorkeeper controllers

Closes #44639

See merge request gitlab-org/gitlab-ce!18599

Use fast timeouts for Gitaly FooInProgress RPC's

See merge request gitlab-org/gitlab-ce!18655

Add developer documentation on diff handling and limits

Closes #43614

See merge request gitlab-org/gitlab-ce!18269

Use grpc 1.11.0

See merge request gitlab-org/gitlab-ce!18652

Backports EE changes from disabling branch unprotect UI

See merge request gitlab-org/gitlab-ce!18262

Don't automatically remove artifacts for pages jobs after pages:deploy has run

Closes #45481

See merge request gitlab-org/gitlab-ce!18628

Use GitLab Pages v0.9.1

Closes #45639

See merge request gitlab-org/gitlab-ce!18654

Makes namespaceless project destroy worker spec not depend on a specific migration version

See merge request gitlab-org/gitlab-ce!18650

Docs: review product categories in doc/README

Closes #45496

See merge request gitlab-org/gitlab-ce!18517

Remove legacy storage path call

See merge request gitlab-org/gitlab-ce!18598

Since we only need the `can?` view helpers there, it's better to
include those in a separate controller.

If we inherit from `ApplicationController` we also need to deal with
authentication, that needs to be done in some, but not all doorkeeper controllers.