Nemcio/SCM-Manager
1
0
Fork 0
mirror of https://github.com/scm-manager/scm-manager.git synced 2026-01-19 05:52:11 +01:00
Code Issues Packages Projects Releases Activity
4,103 Commits 38 Branches 210 Tags
1.58
Commit Graph

4103 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sebastian Sdorra
482589fc67 [maven-release-plugin] prepare release 1.58 1.58 2018-04-06 08:28:50 +02:00
Sebastian Sdorra
49168b10a7 update apache shiro to version 1.3.2 2018-04-05 21:59:41 +02:00
Sebastian Sdorra
4e58b82373 update fron sonatype aether to eclipse aether 1.1.0 2018-04-05 21:58:00 +02:00
Sebastian Sdorra
528f763634 removed never released scm-dao-orientdb module 2018-04-05 20:35:48 +02:00
Sebastian Sdorra
8af69c4e99 update vulnerable dependencies 
commons-beanutils to 1.9.3
commons-collections to 3.2.2
httpclient to 4.5.5
slf4j to 1.7.25
logback to 1.2.3
jackson to 1.9.13
 2018-04-05 19:56:15 +02:00
Sebastian Sdorra
ff2afceb55 update javahg to version 0.13 2018-04-05 19:48:04 +02:00
Sebastian Sdorra
fe531900e4 merge with branch issue-970 2018-04-05 18:45:12 +02:00
Sebastian Sdorra
473f3257a0 close branch issue-970 2018-04-05 18:44:42 +02:00
Sebastian Sdorra
3d401b93ea #970 added help text for enable httppostargs 2018-04-03 11:56:51 +02:00
Sebastian Sdorra
acebd0f25e #970 wrap requests only if http postargs is enabled 2018-04-03 11:14:05 +02:00
Sebastian Sdorra
8047d36028 #970 use iso-8859-1 for http post args instead of us-ascii 2018-04-03 11:00:16 +02:00
Sebastian Sdorra
b43e406b76 #970 initial support of mercurials httppostargs protocol 2018-03-30 11:20:22 +02:00
Sebastian Sdorra
a34acd8ed4 #970 added option to enable the experimental httppostargs protocol of mercurial 2018-03-29 22:14:28 +02:00
Sebastian Sdorra
8aaa67cd6a #970 inspect mercurial commands in order to detect write requests 
The HgPermissionFilter will now inspect the used mercurial command, of all requests which are using a read method like GET, HEAD, OPTIONS or TRACE and tread every one as write request, expect:
- no command was specified with the request (this is required for the hgweb ui)
- the command in the query string was found in the list of read commands
- if query string contains the batch command, then all commands specified in X-HgArg headers must be in the list of read commands
This change is required, in order to fix CVE-2018-1000132 for SCM-Manager.
 2018-03-29 20:26:56 +02:00
Sebastian Sdorra
3a9bc6828d use code blocks for request and response 2018-03-29 19:58:52 +02:00
Sebastian Sdorra
e7dd54c133 #970 added ngrep dumps for mercurial wire protocol and more realistic tests for isWriteRequest 2018-03-29 10:21:34 +02:00
Sebastian Sdorra
d066e59c0d merge with branch issue-959 2018-03-09 08:34:52 +01:00
Sebastian Sdorra
d888929813 close branch issue-959 2018-03-09 08:34:24 +01:00
Sebastian Sdorra
7d94b03a04 #959 added option to disable ssl validation for scm mercurial hook 2018-02-23 08:44:22 +01:00
Sebastian Sdorra
d21a28fa0b [maven-release-plugin] prepare for next development iteration 2018-02-09 08:14:35 +01:00
Sebastian Sdorra
c288243197 [maven-release-plugin] copy for tag 1.57 2018-02-09 08:14:34 +01:00
Sebastian Sdorra
b64d41f3c9 [maven-release-plugin] prepare release 1.57 1.57 2018-02-09 08:14:34 +01:00
Sebastian Sdorra
3206a2a4f0 merge with branch issue-965 2018-02-09 07:59:38 +01:00
Sebastian Sdorra
184b802992 close branch issue-965 2018-02-09 07:59:17 +01:00
Sebastian Sdorra
c216692eab #965 fixed handling of resources with spaces in its id 2018-02-08 22:36:54 +01:00
Sebastian Sdorra
a8186a2492 update svnkit to version 1.9.0-scm3 2018-02-07 15:19:20 +01:00
Sebastian Sdorra
9dd25b334a treat update of a git tag as delete and create for hooks 2018-02-07 11:24:53 +01:00
Sebastian Sdorra
0ff9b255c3 [maven-release-plugin] prepare for next development iteration 2018-01-15 14:51:11 +01:00
Sebastian Sdorra
f9a9050888 [maven-release-plugin] copy for tag 1.56 2018-01-15 14:51:11 +01:00
Sebastian Sdorra
f66221e566 [maven-release-plugin] prepare release 1.56 1.56 2018-01-15 14:51:10 +01:00
Sebastian Sdorra
9b27a9fd8a merge with branch issue-939 2018-01-15 14:36:12 +01:00
Sebastian Sdorra
942cd5d190 close branch issue-939 2018-01-15 14:35:31 +01:00
Sebastian Sdorra
2c5cd634b3 update svnkit to v1.9.0-scm2, to fix high cpu load after client connection abort. See Issue #939 2017-12-15 12:53:12 +01:00
Sebastian Sdorra
efb9af213b merge with branch issue-953 2017-11-20 17:01:40 +01:00
Sebastian Sdorra
1b3e76e809 close branch issue-953 2017-11-20 17:01:10 +01:00
Sebastian Sdorra
5e6685260e fix integer overflow of request with body larger than 4gb, see issue #953 2017-11-19 21:07:28 +01:00
Sebastian Sdorra
712c14f910 [maven-release-plugin] prepare for next development iteration 2017-11-02 09:21:42 +01:00
Sebastian Sdorra
cd9e07421c [maven-release-plugin] copy for tag 1.55 2017-11-02 09:21:42 +01:00
Sebastian Sdorra
fd047c1170 [maven-release-plugin] prepare release 1.55 1.55 2017-11-02 09:21:42 +01:00
Sebastian Sdorra
c75eb388d9 update jgit to version v4.5.3.201708160445-r-scm1 2017-10-25 15:02:28 +02:00
Sebastian Sdorra
241f41bb1c update svnkit to version 1.9.0-scm1 2017-10-25 14:21:38 +02:00
Gábor Stefanik
77eea15417 oops... don't interpret "close=junk" as "close=1" 2017-09-18 12:34:50 +00:00
Gábor Stefanik
14ee6ef0d6 prevent binary data in {extras} from interfering with UTF-8 decoding 2017-09-18 12:30:20 +00:00
Sebastian Sdorra
f72648f646 fixes usage of named cache configurations, see issue #943 2017-08-14 16:04:30 +02:00
Sebastian Sdorra
785e1b12a9 fixed update of git repositories with empty git default branch, see issue #903 2017-07-07 19:09:46 +02:00
Sebastian Sdorra
b17a23ddc8 added option to disallow non fast-forward git pushes 2017-07-06 10:13:11 +02:00
Sebastian Sdorra
73cfbe8993 remove work directory after package upgrade, see #923 2017-06-25 13:46:39 +02:00
Sebastian Sdorra
07a1c8b151 [maven-release-plugin] prepare for next development iteration 2017-06-06 11:39:35 +02:00
Sebastian Sdorra
a7366731ba [maven-release-plugin] copy for tag 1.54 2017-06-06 11:39:34 +02:00
Sebastian Sdorra
fd02f4c068 [maven-release-plugin] prepare release 1.54 1.54 2017-06-06 11:39:34 +02:00