Commits · 7337e5787f91f068b8adc73273ce715e7e9c65db · nexedi / gitlab-ce

08 Jan, 2020 1 commit

Fix deploy tokens erroneously triggering unique IP limits · 7337e578

Stan Hu authored Jan 04, 2020

Some users were complaining that when the user unique IP limiter was
enabled, they would be banned for some unknown
reason. `AuthFinder.find_for_git_client` can authenticate users from a
multitude of tokens (CI, LFS, HTTP basic auth, etc.), but project deploy
tokens are unique in that they aren't attributed to a specific user. As
a result, if project deploy tokens were used, users that had the same
database ID as a deploy token would erroneously be attributed to using
the IP accessed by the token.

To fix this issue, we only call `Gitlab::Auth::UniqueIpsLimiter` if a
user is returned from the authentication search. Project deploy tokens
could be used from many different IPs, so it doesn't make sense to group
them with user activity.

Possibly fixes https://gitlab.com/gitlab-org/gitlab/issues/22854

7337e578

07 Jan, 2020 28 commits
- Merge branch '13490-design-view-needs-more-information-pt-1' into 'master' · 15a86e9d
  Martin Wortschack authored Jan 07, 2020
```
Extend Design view sidebar with issue link and a list of participants

See merge request gitlab-org/gitlab!22103
```
  15a86e9d
- Refactor participants component · ec2ff7cb
  Natalia Tepluhina authored Jan 07, 2020
```
- added participants component to design index

- refactored participants component to have showParticipantLabel prop

- added test for showParticipantLabel prop

- updated failing snapshots
```
  ec2ff7cb
- Merge branch '32351-create-api' into 'master' · 2a58cfc3
  Bob Van Landuyt authored Jan 07, 2020
```
Sidekiq worker to create self monitoring project

See merge request gitlab-org/gitlab!21235
```
  2a58cfc3
- Sidekiq worker for SelfMonitoring CreateService · 308971ad
  Reuben Pereira authored Jan 07, 2020
```
* Create a sidekiq worker to execute
SelfMonitoring::Project::CreateService.execute.

* Also remove the SelfMonitoring::Project::CreateService#execute!
method since it is not being used.
```
  308971ad
- Merge branch '39140-scope-modsec-feature-flag-to-groups' into 'master' · fc2fc73b
  Achilleas Pipinellis authored Jan 07, 2020
```
Add enable_modsecurity toggle to Ingress Managed App

See merge request gitlab-org/gitlab!21966
```
  fc2fc73b
- Add modsecurity_enabled toggle to Ingress managed app · 4ececb6d
  Lucas Charles authored Jan 07, 2020
```
This replaces the previous behavior hid behind the `ingress_modsecurity`
feature flag, instead requiring "opt-in" to enable modsecurity during
ingress installation

See https://gitlab.com/gitlab-org/gitlab/issues/39140 for details
```
  4ececb6d
- Merge branch 'gitaly-version-v1.79.0' into 'master' · 554cce8b
  Sean McGivern authored Jan 07, 2020
```
Upgrade Gitaly to v1.79.0

See merge request gitlab-org/gitlab!22515
```
  554cce8b
- Upgrade Gitaly to v1.79.0 · 094d6047
  GitalyBot authored Jan 07, 2020
  
  094d6047
- Merge branch '55249-change-pa-merged-at-parameters' into 'master' · 7cfe0608
  Sean McGivern authored Jan 07, 2020
```
Rename productivity analytics date parameters

Closes #55249

See merge request gitlab-org/gitlab!22377
```
  7cfe0608
- Rename productivity analytics date parameters · 9860665e
  Adam Hegyi authored Jan 07, 2020
```
- merged_at_after -> merged_after
- merged_at_before -> merged_before

Closes https://gitlab.com/gitlab-org/gitlab/issues/55249
```
  9860665e
- Merge branch 'caalberts-remove-package-qa-notification' into 'master' · 249e94f7
  Rémy Coutable authored Jan 07, 2020
```
Remove `package-and-qa` notifications

Closes gitlab-org/quality/team-tasks#298

See merge request gitlab-org/gitlab!22508
```
  249e94f7
- Merge branch... · 1011dec1
  Phil Hughes authored Jan 07, 2020
```
Merge branch '119346-follow-up-from-add-stack-trace-component-below-details-when-issue-is-created-from-sentry' into 'master'

Refactor test for sentry error stack trace component

See merge request gitlab-org/gitlab!22495
```
  1011dec1
- Merge branch 'design-repo-actions' into 'master' · 9b0ad368
  Phil Hughes authored Jan 07, 2020
```
Design Repo Sync Status - Actions

Closes #34336

See merge request gitlab-org/gitlab!19590
```
  9b0ad368
- Set up view and store · a6c0096c
  Zack Cuddy authored Jan 07, 2020
```
This adds mutations/actions to store

Add actions to components

This adds the actions to vue components
```
  a6c0096c
- Merge branch 'ruby-2.6.5-source' into 'master' · 52e736a6
  Ash McKenzie authored Jan 07, 2020
```
Update Ruby version references to 2.6.5

See merge request gitlab-org/gitlab!22417
```
  52e736a6
- Merge branch 'remove-count-by' into 'master' · 94974e2c
  Ash McKenzie authored Jan 07, 2020
```
Remove count_by from UsageData#count

See merge request gitlab-org/gitlab!22491
```
  94974e2c
- Merge branch 'a-little-release-cleaning' into 'master' · c1fec38d
  Martin Wortschack authored Jan 07, 2020
```
Refactor release block

See merge request gitlab-org/gitlab!22321
```
  c1fec38d
- Add assets module, fix linting · 620f4db1
  Sarah Groff Hennigh-Palermo authored Jan 07, 2020
```
This involves four files, two subs
```
  620f4db1
- Drop Ruby version patch component from cache key · 16321fa2
  Balasankar "Balu" C authored Jan 07, 2020
```
Signed-off-by: Balasankar "Balu" C <balasankarc@autistici.org>
```
  16321fa2
- Update Ruby version references to 2.6.5 · e4366b79
  Balasankar "Balu" C authored Jan 03, 2020
```
Signed-off-by: Balasankar "Balu" C <balasankarc@autistici.org>
```
  e4366b79
- Merge branch '118473-click-popovers-in-mr-qa-tests' into 'master' · 16761366
  Ramya Authappan authored Jan 07, 2020
```
Dismiss popover in MR

See merge request gitlab-org/gitlab!22235
```
  16761366
- Dismiss popover in MR · 1fd5848b
  Mark Lapierre authored Jan 07, 2020
```
The popover prevented tests from adding comments to discussions
```
  1fd5848b
- Remove `package-and-qa` notifications · b54a2dfa
  Albert Salim authored Jan 07, 2020
```
These notifications are now implemented in `gitlab-qa`
https://gitlab.com/gitlab-org/gitlab-qa/merge_requests/361
```
  b54a2dfa
- Merge branch 'add_container_registry_visibility_warning_for_public_projects' into 'master' · eae1e557
  Thong Kuah authored Jan 07, 2020
```
Adds warning regarding container registry visibility in public projects

See merge request gitlab-org/gitlab!22504
```
  eae1e557
- Merge branch '35414-categorise-data-types-for-geo' into 'master' · ed650b2d
  Evan Read authored Jan 07, 2020
```
Docs: Categorise data types for Geo

Closes #35414

See merge request gitlab-org/gitlab!20751
```
  ed650b2d
- Extract Geo data types documentation to its own file · 4c6f3278
  Gabriel Mazetto authored Jan 07, 2020
```
Explain how each data type is stored and handled in GitLab
```
  4c6f3278
- Merge branch 'update-instance-stats-docs' into 'master' · 61dfa10b
  Evan Read authored Jan 07, 2020
```
Update instance statistics docs images

See merge request gitlab-org/gitlab!21986
```
  61dfa10b
- Adds warning regarding container registry visibility in public projects · cde6f461
  Muhammad Dewji authored Jan 07, 2020
  
  cde6f461
06 Jan, 2020 11 commits
- Merge branch 'jl-bump-rdoc-6.2' into 'master' · 3e2feecf
  Stan Hu authored Jan 06, 2020
```
Update rdoc to 6.1.2

Closes #39147

See merge request gitlab-org/gitlab!22434
```
  3e2feecf
- Merge branch '119038-add-polling-headers-for-error-details' into 'master' · 1a0d4c64
  Douglas Barbosa Alexandre authored Jan 06, 2020
```
Resolve Consistent polling in error tracking pages - Backend

See merge request gitlab-org/gitlab!22070
```
  1a0d4c64
- Test that the polling header is set correctly · e4cac8a3
  Sean Arnold authored Jan 06, 2020
```
- Move shared examples into seperate file
```
  e4cac8a3
- Merge branch... · 85cad651
  Thong Kuah authored Jan 06, 2020
```
Merge branch '12703-escalated-audit-event-for-changing-access-expiration-should-contain-the-expiration-date' into 'master'

Resolve "ESCALATED: Audit Event for Changing Access Expiration Should Contain the Expiration Date"

See merge request gitlab-org/gitlab!22412
```
  85cad651
- Moves state setup to beforeEach · 6cf1bd0b
  lauraMon authored Jan 06, 2020
  
  6cf1bd0b
- Merge branch 'master' into jl-bump-rdoc-6.2 · f3b53799
  Joshua Lambert authored Jan 06, 2020
  
  f3b53799
- Merge branch 'qa-shl-fix-group-saml-flakiness' into 'master' · 7fea5e9f
  Dan Davison authored Jan 06, 2020
```
Add wait between retries of SSO settings

Closes #55242

See merge request gitlab-org/gitlab!22360
```
  7fea5e9f
- Merge branch 'fix/skip-snippet-raw-buttons-for-external-caching' into 'master' · 393ef373
  Dmitriy Zaporozhets authored Jan 06, 2020
```
Exclude snippets from external caching handling

Closes #193498

See merge request gitlab-org/gitlab!22397
```
  393ef373
- Merge branch 'cablett-concurrent-validate-false' into 'master' · bfcd9d9f
  Dmitriy Zaporozhets authored Jan 06, 2020
```
Optional skip validation for concurrent foreign key

See merge request gitlab-org/gitlab!22282
```
  bfcd9d9f
- Merge branch 'ff-toggle-backend' into 'master' · 1e61436a
  Mayra Cabrera authored Jan 06, 2020
```
Add Feature Flag Override Toggle

See merge request gitlab-org/gitlab!21598
```
  1e61436a
- Add override toggle to Operations Feature Flags · 10ef2cf5
  Jason Goodman authored Jan 06, 2020
```
Add backend support
Remove frontend feature flag
```
  10ef2cf5