-
Notifications
You must be signed in to change notification settings - Fork 670
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
V1.4.1 #161
V1.4.1 #161
Conversation
Hi Manisha, Thanks for proposing this pull request. I'll wait for you to add the remainder of the code (e.g. server changes) and to finish the unit tests before I review. Thanks, |
Hi James, Thanks for pointing out. I have missed adding the server changes to the PR. Added it now. Please let me know, if anything is needed. |
I still don't like the composite class. I think sending the repository name as a the |
Hi James, Need a bit of a clarification here. |
The fork method UserModel argument should be the UserModel who authenticated for the request. I shouldn't be able to authenticate and create a fork for your account. As for non-admins successfully forking, I'll have to review the security more carefully. |
Hi James, |
I'll get some variation of this merged for the next major release. I'm looking at around June 1 for release - so, somewhere in the next 30 days. |
Ok. Great. |
Yes. And I still think there is an issue with non-admins being able to fork. They should be able to, but I haven't tested that with your code. There is a subtle implied permission in the ordering of the requests enum. |
This has been revised and merged into develop. |
Please commit this to the main branch. This has the modified RPCUtils implementation for gitblit along with the test.