debian-mirror-gitlab/config/initializers/workhorse_multipart.rb

25 lines
785 B
Ruby
Raw Normal View History

2017-08-17 22:00:37 +05:30
Rails.application.configure do |config|
2019-12-04 20:38:33 +05:30
# ApolloUploadServer::Middleware expects to find uploaded files ready to use
config.middleware.insert_before(ApolloUploadServer::Middleware, Gitlab::Middleware::Multipart)
2017-08-17 22:00:37 +05:30
end
# The Gitlab::Middleware::Multipart middleware inserts instances of our
# own ::UploadedFile class in the Rack env of requests. These instances
# will be blocked by the 'strong parameters' feature of ActionController
# unless we somehow whitelist them. At the moment it seems the only way
# to do that is by monkey-patching.
#
module Gitlab
module StrongParameterScalars
def permitted_scalar?(value)
2017-09-10 17:25:29 +05:30
super || value.is_a?(::UploadedFile)
2017-08-17 22:00:37 +05:30
end
end
end
module ActionController
class Parameters
prepend Gitlab::StrongParameterScalars
end
end