Merge requests · Warren Gifford / sourcegraph · GitLab

Snippets Groups Projects

security: enable public access of our GraphQL/Search/etc APIs from any domain/origin

!28775 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
updated 3 years ago
security: update CSRF security model to indicate window.context is unprivileged

!28773 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
updated 3 years ago
web: fix authentication when using `sg start web-standalone`

!28697 · created 3 years ago by Warren Gifford main
apidocs cla-signed
- Merged
updated 3 years ago
security: remove our CSRF tokens to improve security and reduce complexity of our threat model

!28572 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
updated 3 years ago
security: harden which cross-origin headers are allowed

!27931 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
updated 3 years ago
security: remove our CSRF tokens to improve security and reduce complexity of our threat model

!27780 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
- 2
updated 3 years ago
security: make session cookie authentication stricter

!27313 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
- 1
updated 3 years ago
security: document and explain session CSRF safety better

!27303 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
updated 3 years ago
security: improve clarity of CORS docstrings

!27298 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
updated 3 years ago
security: remove duplicated code in CORS handling

!27297 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
updated 3 years ago
security: improve readability of CORS handling

!27295 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
updated 3 years ago
security: make CORS enforcement of non-API routes even more strict

!27246 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
updated 3 years ago
security: enable handling CORS policies differently for API and non-API routes

!27240 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
- 1
updated 3 years ago
security: update CSRF threat model to reflect a manual audit

!27236 · created 3 years ago by Warren Gifford main
apidocs cla-signed security
- Merged
- 4
updated 3 years ago
lsifstore: add API docs tests

!26954 · created 3 years ago by Warren Gifford main
apidocs apidocs-search apidocs-tests cla-signed
- Merged
- 1
updated 3 years ago
lsifstore: update testdata to include API docs

!26913 · created 3 years ago by Warren Gifford main
apidocs cla-signed
- Merged
- 8
updated 3 years ago
codeintel: Split insert search records query

!26524 · created 3 years ago by Warren Gifford main
apidocs cla-signed code-intelligence-performance team/code-intelligence
- Merged
updated 3 years ago
apidocs: fix isEnabled check for repo name + language upsertion

!26397 · created 3 years ago by Warren Gifford main
apidocs cla-signed
- Merged
updated 3 years ago
API docs: add feature flag which disables all LSIF uploads, etc. & turn off by default

!26296 · created 3 years ago by Warren Gifford main
apidocs apidocs-search cla-signed
- Closed
- 3
updated 3 years ago
codeintel: API docs: wrap upload handling in a panic handler

!26231 · created 3 years ago by Warren Gifford main
apidocs cla-signed
- Merged
updated 3 years ago

Prev
1
2
3
4
5
Next