GitHost.io will be shut down on June 1, 2019. At that point this instance will be unreachable and all data will be irrevocably deleted. More details at https://about.gitlab.com/gitlab-hosted/#githost-is-shutting-down-on-june-1st-2019

  • Evan Prodromou's avatar
    Extend authorization framework to cover login and API use · 1525acdc
    Evan Prodromou authored
    I've extended the rights framework (centering on the Right class and Profile::hasRight()) to cover
    Web login and API use. This will make it possible to prevent login and API use by users.
    
    I added two new Right constants to the Right class: WEBLOGIN and API. I check these rights using
    Profile::hasRight() when initializing users. If the rights check fails, I throw an exception.
    
    I created a new AuthorizationException class for this particular
    exception, in order to allow a different UI for these kinds of exceptions (or whatever).
    1525acdc