u/pc/rhodecode-enterprise-ce-fork-pc Commit - r2343:33e1a76f

release: merge back stable branch into default

marcink -

r2343:33e1a76f default

parent child

docs/release-notes/release-notes-4.10.3.rst

0 created 644 +45 0

@@ -0,0 +1,45 b''
	1	\|RCE\| 4.10.3 \|RNS\|
	2	------------------
	3
	4	Release Date
	5	^^^^^^^^^^^^
	6
	7	- 2017-11-11
	8
	9
	10	New Features
	11	^^^^^^^^^^^^
	12
	13
	14
	15	General
	16	^^^^^^^
	17
	18	- ldap: increase timeouts and timelimits for operations
	19
	20
	21	Security
	22	^^^^^^^^
	23
	24	- security(low): fix self xss on repo downloads picker for svn case.
	25
	26
	27	Performance
	28	^^^^^^^^^^^
	29
	30
	31
	32	Fixes
	33	^^^^^
	34
	35
	36	- Pull requests: loosen permissions on creation of PR, fixing regression.
	37	- LDAP: fix regression in ldap search filter implementation after upgrade to
	38	newer version of python-ldap library.
	39
	40
	41	Upgrade notes
	42	^^^^^^^^^^^^^
	43
	44	- Changes helpers to support regression in PR creation and increase
	45	LDAP server timeouts, no potential problems with upgrade.

.hgtags

0 +1 0

 ba4d74981cec5d6b28b158f875a2540952c2f74 v4.10.0
 a6821cbd6b0b3c21503002f88800679fa35ab63 v4.10.1
 ad90ec8d621f4416074b84f6e9ce03964defb v4.10.2
+baee10e698da2724c6e0f698c03a6abb993bf2 v4.10.3

docs/release-notes/release-notes.rst

0 +1 0

             .. toctree::
                :maxdepth: 1
+               release-notes-4.10.3.rst
                release-notes-4.10.2.rst
                release-notes-4.10.1.rst
                release-notes-4.10.0.rst

rhodecode/apps/repository/views/repo_pull_requests.py

0 +2 -1

                             h.route_path('pullrequest_new', repo_name=self.db_repo_name,
                                          _query=org_query))
-                    # target repo we must have write permissions, and also later on
+                    # target repo we must have read permissions, and also later on
                     # we want to check branch permissions here
                     target_perm = HasRepoPermissionAny(
+                        'repository.read',
                         'repository.write', 'repository.admin')(target_db_repo.repo_name)
                     if not target_perm:
                         msg = _('Not Enough permissions to target repo `{}`.'.format(

rhodecode/authentication/base.py

0 +4 -1

                     else:
                         plugin_settings = SettingsModel().get_all_settings()
-                    return plugin_settings.get(full_name) or default
+                    if full_name in plugin_settings:
+                        return plugin_settings[full_name]
+                    else:
+                        return default
                 def create_or_update_setting(self, name, value):
                     """

rhodecode/authentication/plugins/auth_ldap.py

0 +4 -4

                 def __init__(self, server, base_dn, port=389, bind_dn='', bind_pass='',
                              tls_kind='PLAIN', tls_reqcert='DEMAND', ldap_version=3,
                              search_scope='SUBTREE', attr_login='uid',
-                             ldap_filter=None):
+                             ldap_filter=''):
                     if ldap == Missing:
                         raise LdapImportError("Missing or incompatible ldap library")
                                         '/etc/openldap/cacerts')
                     ldap.set_option(ldap.OPT_REFERRALS, ldap.OPT_OFF)
                     ldap.set_option(ldap.OPT_RESTART, ldap.OPT_ON)
-                    ldap.set_option(ldap.OPT_TIMEOUT, 20)
+                    ldap.set_option(ldap.OPT_NETWORK_TIMEOUT, 60 * 10)
-                    ldap.set_option(ldap.OPT_NETWORK_TIMEOUT, 10)
+                    ldap.set_option(ldap.OPT_TIMEOUT, 60 * 10)
-                    ldap.set_option(ldap.OPT_TIMELIMIT, 15)
                     if self.TLS_KIND != 'PLAIN':
                         ldap.set_option(ldap.OPT_X_TLS_REQUIRE_CERT, self.TLS_REQCERT)
                     server = ldap.initialize(self.LDAP_SERVER)

General Comments 0

You need to be logged in to leave comments. Login now

No TODOs yet

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages