##// END OF EJS Templates
security: use 404 instead of 403 in case missing permissions for comment deletion....
security: use 404 instead of 403 in case missing permissions for comment deletion. - prevents resource discovery

File last commit:

r1249:ee3db851 stable
r1826:76aa3640 default
Show More
release-notes-4.5.2.rst
46 lines | 752 B | text/x-rst | RstLexer

|RCE| 4.5.2 |RNS|

Release Date

  • 2016-12-19

New Features

General

  • Github authentication: no longer require repository permissions when connecting RhodeCode account with Github login.
  • Api: added new function get_repo_refs. This was accidentally exposed in our documentation as valid function, but wasn't implemented. This function is now backported from next major release due the documentation issues.

Security

Performance

Fixes

  • Api: Fixed a regression in API validation on create_* functions. Before this fix it always converted given data to lowercase.
  • System info: fixed reporting of free inodes as taken.

Upgrade notes