Merge branch 'master' into 8-11-stable

69ed2c96 · Ruben Davila · 2bb93c2a · 7b63f828 · 69ed2c96 · 69ed2c96
Commit 69ed2c96 authored Aug 12, 2016 by Ruben Davila
468 changed files
--- a/.gitignore
+++ b/.gitignore
@@ -30,6 +30,7 @@
 /config/secrets.yml
 /config/sidekiq.yml
 /coverage/*
+/coverage-javascript/
 /db/*.sqlite3
 /db/*.sqlite3-journal
 /db/data.yml

--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
-image: "ruby:2.1"
+image: "ruby:2.3.1"
 cache:
-  key: "ruby21"
+  key: "ruby-231"
  paths:
  - vendor/apt
  - vendor/ruby
@@ -138,57 +138,57 @@ spinach 7 10: *spinach-knapsack
 spinach 8 10: *spinach-knapsack
 spinach 9 10: *spinach-knapsack
-# Execute all testing suites against Ruby 2.3
+# Execute all testing suites against Ruby 2.1
-.ruby-23: &ruby-23
+.ruby-21: &ruby-21
-  image: "ruby:2.3"
+  image: "ruby:2.1"
  <<: *use-db
  only:
    - master
  cache:
-    key: "ruby-23"
+    key: "ruby21"
    paths:
      - vendor/apt
      - vendor/ruby
-.rspec-knapsack-ruby23: &rspec-knapsack-ruby23
+.rspec-knapsack-ruby21: &rspec-knapsack-ruby21
  <<: *rspec-knapsack
-  <<: *ruby-23
+  <<: *ruby-21
-.spinach-knapsack-ruby23: &spinach-knapsack-ruby23
+.spinach-knapsack-ruby21: &spinach-knapsack-ruby21
  <<: *spinach-knapsack
-  <<: *ruby-23
+  <<: *ruby-21
-rspec 0 20 ruby23: *rspec-knapsack-ruby23
+rspec 0 20 ruby21: *rspec-knapsack-ruby21
-rspec 1 20 ruby23: *rspec-knapsack-ruby23
+rspec 1 20 ruby21: *rspec-knapsack-ruby21
-rspec 2 20 ruby23: *rspec-knapsack-ruby23
+rspec 2 20 ruby21: *rspec-knapsack-ruby21
-rspec 3 20 ruby23: *rspec-knapsack-ruby23
+rspec 3 20 ruby21: *rspec-knapsack-ruby21
-rspec 4 20 ruby23: *rspec-knapsack-ruby23
+rspec 4 20 ruby21: *rspec-knapsack-ruby21
-rspec 5 20 ruby23: *rspec-knapsack-ruby23
+rspec 5 20 ruby21: *rspec-knapsack-ruby21
-rspec 6 20 ruby23: *rspec-knapsack-ruby23
+rspec 6 20 ruby21: *rspec-knapsack-ruby21
-rspec 7 20 ruby23: *rspec-knapsack-ruby23
+rspec 7 20 ruby21: *rspec-knapsack-ruby21
-rspec 8 20 ruby23: *rspec-knapsack-ruby23
+rspec 8 20 ruby21: *rspec-knapsack-ruby21
-rspec 9 20 ruby23: *rspec-knapsack-ruby23
+rspec 9 20 ruby21: *rspec-knapsack-ruby21
-rspec 10 20 ruby23: *rspec-knapsack-ruby23
+rspec 10 20 ruby21: *rspec-knapsack-ruby21
-rspec 11 20 ruby23: *rspec-knapsack-ruby23
+rspec 11 20 ruby21: *rspec-knapsack-ruby21
-rspec 12 20 ruby23: *rspec-knapsack-ruby23
+rspec 12 20 ruby21: *rspec-knapsack-ruby21
-rspec 13 20 ruby23: *rspec-knapsack-ruby23
+rspec 13 20 ruby21: *rspec-knapsack-ruby21
-rspec 14 20 ruby23: *rspec-knapsack-ruby23
+rspec 14 20 ruby21: *rspec-knapsack-ruby21
-rspec 15 20 ruby23: *rspec-knapsack-ruby23
+rspec 15 20 ruby21: *rspec-knapsack-ruby21
-rspec 16 20 ruby23: *rspec-knapsack-ruby23
+rspec 16 20 ruby21: *rspec-knapsack-ruby21
-rspec 17 20 ruby23: *rspec-knapsack-ruby23
+rspec 17 20 ruby21: *rspec-knapsack-ruby21
-rspec 18 20 ruby23: *rspec-knapsack-ruby23
+rspec 18 20 ruby21: *rspec-knapsack-ruby21
-rspec 19 20 ruby23: *rspec-knapsack-ruby23
+rspec 19 20 ruby21: *rspec-knapsack-ruby21
-spinach 0 10 ruby23: *spinach-knapsack-ruby23
+spinach 0 10 ruby21: *spinach-knapsack-ruby21
-spinach 1 10 ruby23: *spinach-knapsack-ruby23
+spinach 1 10 ruby21: *spinach-knapsack-ruby21
-spinach 2 10 ruby23: *spinach-knapsack-ruby23
+spinach 2 10 ruby21: *spinach-knapsack-ruby21
-spinach 3 10 ruby23: *spinach-knapsack-ruby23
+spinach 3 10 ruby21: *spinach-knapsack-ruby21
-spinach 4 10 ruby23: *spinach-knapsack-ruby23
+spinach 4 10 ruby21: *spinach-knapsack-ruby21
-spinach 5 10 ruby23: *spinach-knapsack-ruby23
+spinach 5 10 ruby21: *spinach-knapsack-ruby21
-spinach 6 10 ruby23: *spinach-knapsack-ruby23
+spinach 6 10 ruby21: *spinach-knapsack-ruby21
-spinach 7 10 ruby23: *spinach-knapsack-ruby23
+spinach 7 10 ruby21: *spinach-knapsack-ruby21
-spinach 8 10 ruby23: *spinach-knapsack-ruby23
+spinach 8 10 ruby21: *spinach-knapsack-ruby21
-spinach 9 10 ruby23: *spinach-knapsack-ruby23
+spinach 9 10 ruby21: *spinach-knapsack-ruby21
 # Other generic tests
@@ -222,7 +222,22 @@ teaspoon:
  stage: test
  <<: *use-db
  script:
+    - curl --silent --location https://deb.nodesource.com/setup_6.x | bash -
+    - apt-get install --assume-yes nodejs
+    - npm install --global istanbul
    - teaspoon
+  artifacts:
+    name: coverage-javascript
+    expire_in: 31d
+    paths:
+    - coverage-javascript/default/
+lint-doc:
+  stage: test
+  image: "phusion/baseimage:latest"
+  before_script: []
+  script:
+    - scripts/lint-doc.sh
 bundler:audit:
  stage: test
@@ -269,10 +284,12 @@ pages:
  stage: pages
  dependencies:
    - coverage
+    - teaspoon
  script:
    - mv public/ .public/
    - mkdir public/
    - mv coverage public/coverage-ruby
+    - mv coverage-javascript/default/ public/coverage-javascript/
  artifacts:
    paths:
      - public

--- a/.mailmap
+++ b/.mailmap
+#
+# This list is used by git-shortlog to make contributions from the
+# same person appearing to be so.
+#
+Achilleas Pipinellis <axilleas@axilleas.me> <axilleas@archlinux.gr>
+Achilleas Pipinellis <axilleas@axilleas.me> <axilleas@users.noreply.github.com>
+Dmitriy Zaporozhets <dzaporozhets@gitlab.com> <dmitriy.zaporozhets@gmail.com>
+Dmitriy Zaporozhets <dzaporozhets@gitlab.com> <dzaporozhets@sphereconsultinginc.com>
+Douwe Maan <douwe@gitlab.com> <douwe@selenight.nl>
+Douwe Maan <douwe@gitlab.com> <me@douwe.me>
+Grzegorz Bizon <grzegorz@gitlab.com> <grzegorz.bizon@ntsn.pl>
+Grzegorz Bizon <grzegorz@gitlab.com> <grzesiek.bizon@gmail.com>
+Jacob Vosmaer <jacob@gitlab.com> <contact@jacobvosmaer.nl>
+Jacob Vosmaer <jacob@gitlab.com> Jacob Vosmaer (GitLab) <jacob@gitlab.com>
+Jacob Schatz <jschatz@gitlab.com> <jacobschatz@Jacobs-MacBook-Pro.local>
+Jacob Schatz <jschatz@gitlab.com> <jacobschatz@Jacobs-MBP.fios-router.home>
+Jacob Schatz <jschatz@gitlab.com> <jschatz1@gmail.com>
+James Lopez <james@jameslopez.es> <james@gitlab.com>
+James Lopez <james@jameslopez.es> <james.lopez@vodafone.com>
+Kamil Trzciński <kamil@gitlab.com> <ayufan@ayufan.eu>
+Marin Jankovski <maxlazio@gmail.com> <marin@gitlab.com>
+Phil Hughes <me@iamphill.com> <theephil@gmail.com>
+Rémy Coutable <remy@rymai.me> <remy@gitlab.com>
+Robert Schilling <rschilling@student.tugraz.at> <Razer6@users.noreply.github.com>
+Robert Schilling <rschilling@student.tugraz.at> <schilling.ro@gmail.com>
+Robert Speicher <robert@gitlab.com> <rspeicher@gmail.com>
+Stan Hu <stanhu@gmail.com> <stanhu@alum.mit.edu>
+Stan Hu <stanhu@gmail.com> <stanhu@packetzoom.com>
+Stan Hu <stanhu@gmail.com> <stanhu@users.noreply.github.com>
+Stan Hu <stanhu@gmail.com> stanhu <stanhu@gmail.com>
+Sytse Sijbrandij <sytse@gitlab.com> <sytse+admin@gitlab.com>
+Sytse Sijbrandij <sytse@gitlab.com> <sytse@dosire.com>
+Sytse Sijbrandij <sytse@gitlab.com> <sytses@gmail.com>
+Sytse Sijbrandij <sytse@gitlab.com> dosire <sytse@gitlab.com>
--- a/.rubocop.yml
+++ b/.rubocop.yml
@@ -149,19 +149,19 @@ Style/EmptyLinesAroundAccessModifier:
 # Keeps track of empty lines around block bodies.
 Style/EmptyLinesAroundBlockBody:
-  Enabled: false
+  Enabled: true
 # Keeps track of empty lines around class bodies.
 Style/EmptyLinesAroundClassBody:
-  Enabled: false
+  Enabled: true
 # Keeps track of empty lines around module bodies.
 Style/EmptyLinesAroundModuleBody:
-  Enabled: false
+  Enabled: true
 # Keeps track of empty lines around method bodies.
 Style/EmptyLinesAroundMethodBody:
-  Enabled: false
+  Enabled: true
 # Avoid the use of END blocks.
 Style/EndBlock:
@@ -373,6 +373,10 @@ Style/SpaceAfterNot:
 Style/SpaceAfterSemicolon:
  Enabled: true
+# Use space around equals in parameter default
+Style/SpaceAroundEqualsInParameterDefault:
+  Enabled: true
 # Use a space around keywords if appropriate.
 Style/SpaceAroundKeyword:
  Enabled: true

--- a/.rubocop_todo.yml
+++ b/.rubocop_todo.yml
@@ -339,13 +339,6 @@ Style/SingleLineBlockParams:
 Style/SingleLineMethods:
  Enabled: false
-# Offense count: 14
-# Cop supports --auto-correct.
-# Configuration parameters: EnforcedStyle, SupportedStyles.
-# SupportedStyles: space, no_space
-Style/SpaceAroundEqualsInParameterDefault:
-  Enabled: false
 # Offense count: 119
 # Cop supports --auto-correct.
 # Configuration parameters: EnforcedStyle, SupportedStyles.

--- a/.ruby-version
+++ b/.ruby-version
-2.1.8
+2.3.1
--- a/CHANGELOG
+++ b/CHANGELOG
 Please view this file on the master branch, on stable branches it's out of date.
 v 8.11.0 (unreleased)
+  - Remove the http_parser.rb dependency by removing the tinder gem. !5758 (tbalthazar)
  - Fix don't pass a local variable called `i` to a partial. !20510 (herminiotorres)
  - Fix rename `add_users_into_project` and `projects_ids`. !20512 (herminiotorres)
  - Fix the title of the toggle dropdown button. !5515 (herminiotorres)
+  - Rename `markdown_preview` routes to `preview_markdown`. (Christopher Bartz)
+  - Update to Ruby 2.3.1. !4948
  - Improve diff performance by eliminating redundant checks for text blobs
+  - Ensure that branch names containing escapable characters (e.g. %20) aren't unescaped indiscriminately. !5770 (ewiltshi)
  - Convert switch icon into icon font (ClemMakesApps)
+  - API: Endpoints for enabling and disabling deploy keys
+  - API: List access requests, request access, approve, and deny access requests to a project or a group. !4833
+  - Use long options for curl examples in documentation !5703 (winniehell)
  - Remove magic comments (`# encoding: UTF-8`) from Ruby files. !5456 (winniehell)
  - Add support for relative links starting with ./ or / to RelativeLinkFilter (winniehell)
  - Ignore URLs starting with // in Markdown links !5677 (winniehell)
  - Fix CI status icon link underline (ClemMakesApps)
  - The Repository class is now instrumented
+  - Fix filter label tooltip HTML rendering (ClemMakesApps)
  - Cache the commit author in RequestStore to avoid extra lookups in PostReceive
  - Expand commit message width in repo view (ClemMakesApps)
  - Cache highlighted diff lines for merge requests
+  - Pre-create all builds for a Pipeline when the new Pipeline is created !5295
  - Fix of 'Commits being passed to custom hooks are already reachable when using the UI'
+  - Show member roles to all users on members page
+  - Project.visible_to_user is instrumented again
+  - Fix awardable button mutuality loading spinners (ClemMakesApps)
  - Add support for using RequestStore within Sidekiq tasks via SIDEKIQ_REQUEST_STORE env variable
  - Optimize maximum user access level lookup in loading of notes
  - Add "No one can push" as an option for protected branches. !5081
  - Improve performance of AutolinkFilter#text_parse by using XPath
+  - Add experimental Redis Sentinel support !1877
+  - Fix branches page dropdown sort initial state (ClemMakesApps)
  - Environments have an url to link to
+  - Various redundant database indexes have been removed
  - Update `timeago` plugin to use multiple string/locale settings
  - Remove unused images (ClemMakesApps)
  - Limit git rev-list output count to one in forced push check
@@ -32,10 +47,15 @@ v 8.11.0 (unreleased)
  - Remove delay when hitting "Reply..." button on page with a lot of discussions
  - Retrieve rendered HTML from cache in one request
  - Fix renaming repository when name contains invalid chararacters under project settings
+  - Upgrade Grape from 0.13.0 to 0.15.0. !4601
+  - Trigram indexes for the "ci_runners" table have been removed to speed up UPDATE queries
  - Fix devise deprecation warnings.
+  - Update version_sorter and use new interface for faster tag sorting
  - Optimize checking if a user has read access to a list of issues !5370
+  - Store all DB secrets in secrets.yml, under descriptive names !5274
  - Nokogiri's various parsing methods are now instrumented
  - Add simple identifier to public SSH keys (muteor)
+  - Admin page now references docs instead of a specific file !5600 (AnAverageHuman)
  - Add a way to send an email and create an issue based on private personal token. Find the email address from issues page. !3363
  - Fix filter input alignment (ClemMakesApps)
  - Include old revision in merge request update hooks (Ben Boeckel)
@@ -44,6 +64,7 @@ v 8.11.0 (unreleased)
  - Document that webhook secret token is sent in X-Gitlab-Token HTTP header !5664 (lycoperdon)
  - Gitlab::Highlight is now instrumented
  - All created issues, API or WebUI, can be submitted to Akismet for spam check !5333
+  - Allow users to import cross-repository pull requests from GitHub
  - The overhead of instrumented method calls has been reduced
  - Remove `search_id` of labels dropdown filter to fix 'Missleading URI for labels in Merge Requests and Issues view'. !5368 (Scott Le)
  - Load project invited groups and members eagerly in `ProjectTeam#fetch_members`
@@ -59,6 +80,7 @@ v 8.11.0 (unreleased)
  - Add GitLab Workhorse version to admin dashboard (Katarzyna Kobierska Ula Budziszewska)
  - Allow branch names ending with .json for graph and network page !5579 (winniehell)
  - Add the `sprockets-es6` gem
+  - Improve OAuth2 client documentation (muteor)
  - Multiple trigger variables show in separate lines (Katarzyna Kobierska Ula Budziszewska)
  - Profile requests when a header is passed
  - Avoid calculation of line_code and position for _line partial when showing diff notes on discussion tab.
@@ -73,12 +95,22 @@ v 8.11.0 (unreleased)
  - Sensible state specific default sort order for issues and merge requests !5453 (tomb0y)
  - Fix RequestProfiler::Middleware error when code is reloaded in development
  - Catch what warden might throw when profiling requests to re-throw it
+  - Avoid commit lookup on diff_helper passing existing local variable to the helper method
  - Add description to new_issue email and new_merge_request_email in text/plain content type. !5663 (dixpac)
  - Speed up and reduce memory usage of Commit#repo_changes, Repository#expire_avatar_cache and IrkerWorker
  - Add unfold links for Side-by-Side view. !5415 (Tim Masliuchenko)
  - Adds support for pending invitation project members importing projects
+  - Update devise initializer to turn on changed password notification emails. !5648 (tombell)
-v 8.10.5 (unreleased)
+  - Avoid to show the original password field when password is automatically set. !5712 (duduribeiro)
+  - Fix importing GitLab projects with an invalid MR source project
+  - Sort folders with submodules in Files view !5521
+  - Each `File::exists?` replaced to `File::exist?` because of deprecate since ruby version 2.2.0
+  - Add auto-completition in pipeline (Katarzyna Kobierska Ula Budziszewska)
+v 8.10.5
+  - Add a data migration to fix some missing timestamps in the members table. !5670
+  - Revert the "Defend against 'Host' header injection" change in the source NGINX templates. !5706
+  - Cache project count for 5 minutes to reduce DB load. !5746 & !5754
 v 8.10.4
  - Don't close referenced upstream issues from a forked project.

--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -465,6 +465,7 @@ merge request:
    - multi-line method chaining style **Option B**: dot `.` on previous line
    - string literal quoting style **Option A**: single quoted by default
 1.  [Rails](https://github.com/bbatsov/rails-style-guide)
+1.  [Newlines styleguide][newlines-styleguide]
 1.  [Testing](doc/development/testing.md)
 1.  [JavaScript (ES6)](https://github.com/airbnb/javascript)
 1.  [JavaScript (ES5)](https://github.com/airbnb/javascript/tree/master/es5)
@@ -537,6 +538,7 @@ available at [http://contributor-covenant.org/version/1/1/0/](http://contributor
 [rss-naming]: https://github.com/bbatsov/ruby-style-guide/blob/master/README.md#naming
 [doc-styleguide]: doc/development/doc_styleguide.md "Documentation styleguide"
 [scss-styleguide]: doc/development/scss_styleguide.md "SCSS styleguide"
+[newlines-styleguide]: doc/development/newlines_styleguide.md "Newlines styleguide"
 [gitlab-design]: https://gitlab.com/gitlab-org/gitlab-design
 [free Antetype viewer (Mac OSX only)]: https://itunes.apple.com/us/app/antetype-viewer/id824152298?mt=12
 [`gitlab8.atype` file]: https://gitlab.com/gitlab-org/gitlab-design/tree/master/current/

--- a/GITLAB_SHELL_VERSION
+++ b/GITLAB_SHELL_VERSION
-3.2.1
+3.3.3
--- a/Gemfile
+++ b/Gemfile
 source 'https://rubygems.org'
-gem 'rails', '4.2.7'
+gem 'rails', '4.2.7.1'
 gem 'rails-deprecated_sanitizer', '~> 1.0.3'
 # Responders respond_to and respond_with
@@ -69,7 +69,7 @@ gem 'gollum-rugged_adapter', '~> 0.4.2', require: false
 gem 'github-linguist', '~> 4.7.0', require: 'linguist'
 # API
-gem 'grape',        '~> 0.13.0'
+gem 'grape',        '~> 0.15.0'
 gem 'grape-entity', '~> 0.4.2'
 gem 'rack-cors',    '~> 0.4.0', require: 'rack/cors'
@@ -154,7 +154,7 @@ gem 'settingslogic', '~> 2.0.9'
 # Misc
-gem 'version_sorter', '~> 2.0.0'
+gem 'version_sorter', '~> 2.1.0'
 # Cache
 gem 'redis-rails', '~> 4.0.0'
@@ -163,9 +163,6 @@ gem 'redis-rails', '~> 4.0.0'
 gem 'redis', '~> 3.2'
 gem 'connection_pool', '~> 2.0'
-# Campfire integration
-gem 'tinder', '~> 1.10.0'
 # HipChat integration
 gem 'hipchat', '~> 1.5.0'

--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -3,34 +3,34 @@ GEM
  specs:
    RedCloth (4.3.2)
    ace-rails-ap (4.0.2)
-    actionmailer (4.2.7)
+    actionmailer (4.2.7.1)
-      actionpack (= 4.2.7)
+      actionpack (= 4.2.7.1)
-      actionview (= 4.2.7)
+      actionview (= 4.2.7.1)
-      activejob (= 4.2.7)
+      activejob (= 4.2.7.1)
      mail (~> 2.5, >= 2.5.4)
      rails-dom-testing (~> 1.0, >= 1.0.5)
-    actionpack (4.2.7)
+    actionpack (4.2.7.1)
-      actionview (= 4.2.7)
+      actionview (= 4.2.7.1)
-      activesupport (= 4.2.7)
+      activesupport (= 4.2.7.1)
      rack (~> 1.6)
      rack-test (~> 0.6.2)
      rails-dom-testing (~> 1.0, >= 1.0.5)
      rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    actionview (4.2.7)
+    actionview (4.2.7.1)
-      activesupport (= 4.2.7)
+      activesupport (= 4.2.7.1)
      builder (~> 3.1)
      erubis (~> 2.7.0)
      rails-dom-testing (~> 1.0, >= 1.0.5)
      rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    activejob (4.2.7)
+    activejob (4.2.7.1)
-      activesupport (= 4.2.7)
+      activesupport (= 4.2.7.1)
      globalid (>= 0.3.0)
-    activemodel (4.2.7)
+    activemodel (4.2.7.1)
-      activesupport (= 4.2.7)
+      activesupport (= 4.2.7.1)
      builder (~> 3.1)
-    activerecord (4.2.7)
+    activerecord (4.2.7.1)
-      activemodel (= 4.2.7)
+      activemodel (= 4.2.7.1)
-      activesupport (= 4.2.7)
+      activesupport (= 4.2.7.1)
      arel (~> 6.0)
    activerecord-session_store (1.0.0)
      actionpack (>= 4.0, < 5.1)
@@ -38,7 +38,7 @@ GEM
      multi_json (~> 1.11, >= 1.11.2)
      rack (>= 1.5.2, < 3)
      railties (>= 4.0, < 5.1)
-    activesupport (4.2.7)
+    activesupport (4.2.7.1)
      i18n (~> 0.7)
      json (~> 1.7, >= 1.7.7)
      minitest (~> 5.1)
@@ -289,7 +289,7 @@ GEM
      omniauth (~> 1.0)
      pyu-ruby-sasl (~> 0.0.3.1)
      rubyntlm (~> 0.3)
-    globalid (0.3.6)
+    globalid (0.3.7)
      activesupport (>= 4.1.0)
    gollum-grit_adapter (1.0.1)
      gitlab-grit (~> 2.7, >= 2.7.1)
@@ -308,7 +308,7 @@ GEM
      json
      multi_json
      request_store (>= 1.0)
-    grape (0.13.0)
+    grape (0.15.0)
      activesupport
      builder
      hashie (>= 2.1.0)
@@ -335,7 +335,6 @@ GEM
      activesupport (>= 2)
      nokogiri (~> 1.4)
    htmlentities (4.3.4)
-    http_parser.rb (0.5.3)
    httparty (0.13.7)
      json (~> 1.8)
      multi_xml (>= 0.5.2)
@@ -519,16 +518,16 @@ GEM
      rack
    rack-test (0.6.3)
      rack (>= 1.0)
-    rails (4.2.7)
+    rails (4.2.7.1)
-      actionmailer (= 4.2.7)
+      actionmailer (= 4.2.7.1)
-      actionpack (= 4.2.7)
+      actionpack (= 4.2.7.1)
-      actionview (= 4.2.7)
+      actionview (= 4.2.7.1)
-      activejob (= 4.2.7)
+      activejob (= 4.2.7.1)
-      activemodel (= 4.2.7)
+      activemodel (= 4.2.7.1)
-      activerecord (= 4.2.7)
+      activerecord (= 4.2.7.1)
-      activesupport (= 4.2.7)
+      activesupport (= 4.2.7.1)
      bundler (>= 1.3.0, < 2.0)
-      railties (= 4.2.7)
+      railties (= 4.2.7.1)
      sprockets-rails
    rails-deprecated_sanitizer (1.0.3)
      activesupport (>= 4.2.0.alpha)
@@ -538,9 +537,9 @@ GEM
      rails-deprecated_sanitizer (>= 1.0.1)
    rails-html-sanitizer (1.0.3)
      loofah (~> 2.0)
-    railties (4.2.7)
+    railties (4.2.7.1)
-      actionpack (= 4.2.7)
+      actionpack (= 4.2.7.1)
-      activesupport (= 4.2.7)
+      activesupport (= 4.2.7.1)
      rake (>= 0.8.7)
      thor (>= 0.18.1, < 2.0)
    rainbow (2.1.0)
@@ -672,7 +671,6 @@ GEM
      redis-namespace (>= 1.5.2)
      rufus-scheduler (>= 2.0.24)
      sidekiq (>= 4.0.0)
-    simple_oauth (0.1.9)
    simplecov (0.12.0)
      docile (~> 1.1.0)
      json (>= 1.8, < 3)
@@ -742,21 +740,8 @@ GEM
    tilt (2.0.5)
    timecop (0.8.1)
    timfel-krb5-auth (0.8.3)
-    tinder (1.10.1)
-      eventmachine (~> 1.0)
-      faraday (~> 0.9.0)
-      faraday_middleware (~> 0.9)
-      hashie (>= 1.0)
-      json (~> 1.8.0)
-      mime-types
-      multi_json (~> 1.7)
-      twitter-stream (~> 0.1)
    turbolinks (2.5.3)
      coffee-rails
-    twitter-stream (0.1.16)
-      eventmachine (>= 0.12.8)
-      http_parser.rb (~> 0.5.1)
-      simple_oauth (~> 0.1.4)
    tzinfo (1.2.2)
      thread_safe (~> 0.1)
    u2f (0.2.1)
@@ -778,7 +763,7 @@ GEM
    uniform_notifier (1.10.0)
    uuid (2.3.8)
      macaddr (~> 1.0)
-    version_sorter (2.0.0)
+    version_sorter (2.1.0)
    virtus (1.0.5)
      axiom-types (~> 0.1)
      coercible (~> 1.0)
@@ -876,7 +861,7 @@ DEPENDENCIES
  gollum-lib (~> 4.2)
  gollum-rugged_adapter (~> 0.4.2)
  gon (~> 6.1.0)
-  grape (~> 0.13.0)
+  grape (~> 0.15.0)
  grape-entity (~> 0.4.2)
  hamlit (~> 2.5)
  health_check (~> 2.1.0)
@@ -929,7 +914,7 @@ DEPENDENCIES
  rack-attack (~> 4.3.1)
  rack-cors (~> 0.4.0)
  rack-oauth2 (~> 1.2.1)
-  rails (= 4.2.7)
+  rails (= 4.2.7.1)
  rails-deprecated_sanitizer (~> 1.0.3)
  rainbow (~> 2.1.0)
  rblineprof (~> 0.3.6)
@@ -981,7 +966,6 @@ DEPENDENCIES
  teaspoon-jasmine (~> 2.2.0)
  test_after_commit (~> 0.4.2)
  thin (~> 1.7.0)
-  tinder (~> 1.10.0)
  turbolinks (~> 2.5.0)
  u2f (~> 0.2.1)
  uglifier (~> 2.7.2)
@@ -989,7 +973,7 @@ DEPENDENCIES
  unf (~> 0.1.4)
  unicorn (~> 4.9.0)
  unicorn-worker-killer (~> 0.4.2)
-  version_sorter (~> 2.0.0)
+  version_sorter (~> 2.1.0)
  virtus (~> 1.0.1)
  vmstat (~> 2.1.1)
  web-console (~> 2.0)

--- a/app/assets/javascripts/awards_handler.js
+++ b/app/assets/javascripts/awards_handler.js
@@ -161,21 +161,9 @@
        $emojiButton = votesBlock.find("[data-emoji=" + mutualVote + "]").parent();
        isAlreadyVoted = $emojiButton.hasClass('active');
        if (isAlreadyVoted) {
-          this.showEmojiLoader($emojiButton);
+          this.addAward(votesBlock, awardUrl, mutualVote, false);
-          return this.addAward(votesBlock, awardUrl, mutualVote, false, function() {
-            return $emojiButton.removeClass('is-loading');
-          });
-        }
        }
-    };
-    AwardsHandler.prototype.showEmojiLoader = function($emojiButton) {
-      var $loader;
-      $loader = $emojiButton.find('.fa-spinner');
-      if (!$loader.length) {
-        $emojiButton.append('<i class="fa fa-spinner fa-spin award-control-icon award-control-icon-loading"></i>');
      }
-      return $emojiButton.addClass('is-loading');
    };
    AwardsHandler.prototype.isActive = function($emojiButton) {

--- a/app/assets/javascripts/dispatcher.js
+++ b/app/assets/javascripts/dispatcher.js
@@ -186,6 +186,12 @@
              break;
            case 'projects':
              new NamespaceSelects();
+              break;
+            case 'labels':
+              switch (path[2]) {
+                case 'edit':
+                  new Labels();
+              }
          }
          break;
        case 'dashboard':
@@ -211,6 +217,7 @@
              new ProjectNew();
              break;
            case 'show':
+              new Star();
              new ProjectNew();
              new ProjectShow();
              new NotificationsDropdown();

--- a/app/assets/javascripts/dropzone_input.js
+++ b/app/assets/javascripts/dropzone_input.js
-/*= require markdown_preview */
+/*= require preview_markdown */
 (function() {
  this.DropzoneInput = (function() {

--- a/app/assets/javascripts/markdown_preview.js
+++ b/app/assets/javascripts/markdown_preview.js
@@ -28,7 +28,7 @@
    };
    MarkdownPreview.prototype.renderMarkdown = function(text, success) {
-      if (!window.markdown_preview_path) {
+      if (!window.preview_markdown_path) {
        return;
      }
      if (text === this.ajaxCache.text) {
@@ -36,7 +36,7 @@
      }
      return $.ajax({
        type: 'POST',
-        url: window.markdown_preview_path,
+        url: window.preview_markdown_path,
        data: {
          text: text
        },

--- a/app/assets/stylesheets/pages/environments.scss
+++ b/app/assets/stylesheets/pages/environments.scss
 .environments {
  .commit-title {
    margin: 0;
  }
+  .fa-play {
+    font-size: 14px;
+  }
+  .dropdown-new {
+    color: $table-text-gray;
+  }
+  .dropdown-menu {
+    .fa {
+      margin-right: 6px;
+      color: $table-text-gray;
+    }
+  }
+  .branch-name {
+    color: $gl-dark-link-color;
+  }
+}
+.table.builds.environments {
+  min-width: 500px;
+  .icon-container {
+    width: 20px;
+    text-align: center;
+  }
 }
--- a/app/assets/stylesheets/pages/labels.scss
+++ b/app/assets/stylesheets/pages/labels.scss
@@ -182,6 +182,17 @@
  .btn {
    color: inherit;
  }
+  a.btn {
+    padding: 0;
+    .has-tooltip {
+      top: 0;
+      border-top-right-radius: 0;
+      border-bottom-right-radius: 0;
+      line-height: 1.1;
+    }
+  }
 }
 .label-options-toggle {

--- a/app/controllers/profiles/passwords_controller.rb
+++ b/app/controllers/profiles/passwords_controller.rb
@@ -50,6 +50,7 @@ class Profiles::PasswordsController < Profiles::ApplicationController
      flash[:notice] = "Password was successfully updated. Please login with it"
      redirect_to new_user_session_path
    else
+      @user.reload
      render 'edit'
    end
  end

--- a/app/controllers/projects/badges_controller.rb
+++ b/app/controllers/projects/badges_controller.rb
@@ -8,8 +8,9 @@ class Projects::BadgesController < Projects::ApplicationController
    respond_to do |format|
      format.html { render_404 }
      format.svg do
-        send_data(badge.data, type: badge.type, disposition: 'inline')
+        render 'badge', locals: { badge: badge.template }
      end
    end
  end

--- a/app/controllers/projects/branches_controller.rb
+++ b/app/controllers/projects/branches_controller.rb
 class Projects::BranchesController < Projects::ApplicationController
  include ActionView::Helpers::SanitizeHelper
+  include SortingHelper
  # Authorize
  before_action :require_non_empty_project
  before_action :authorize_download_code!
  before_action :authorize_push_code!, only: [:new, :create, :destroy]
  def index
-    @sort = params[:sort].presence || 'name'
+    @sort = params[:sort].presence || sort_value_name
    @branches = BranchesFinder.new(@repository, params).execute
    @branches = Kaminari.paginate_array(@branches).page(params[:page])

--- a/app/controllers/projects/builds_controller.rb
+++ b/app/controllers/projects/builds_controller.rb
@@ -6,7 +6,7 @@ class Projects::BuildsController < Projects::ApplicationController
  def index
    @scope = params[:scope]
-    @all_builds = project.builds
+    @all_builds = project.builds.relevant
    @builds = @all_builds.order('created_at DESC')
    @builds =
      case @scope

--- a/app/controllers/projects/commit_controller.rb
+++ b/app/controllers/projects/commit_controller.rb
@@ -134,8 +134,8 @@ class Projects::CommitController < Projects::ApplicationController
  end
  def define_status_vars
-    @statuses = CommitStatus.where(pipeline: pipelines)
+    @statuses = CommitStatus.where(pipeline: pipelines).relevant
-    @builds = Ci::Build.where(pipeline: pipelines)
+    @builds = Ci::Build.where(pipeline: pipelines).relevant
  end
  def assign_change_commit_vars(mr_source_branch)

--- a/app/controllers/projects/deploy_keys_controller.rb
+++ b/app/controllers/projects/deploy_keys_controller.rb
@@ -12,8 +12,7 @@ class Projects::DeployKeysController < Projects::ApplicationController
  end
  def new
-    redirect_to namespace_project_deploy_keys_path(@project.namespace,
+    redirect_to namespace_project_deploy_keys_path(@project.namespace, @project)
-                                                   @project)
  end
  def create
@@ -21,19 +20,16 @@ class Projects::DeployKeysController < Projects::ApplicationController
    set_index_vars
    if @key.valid? && @project.deploy_keys << @key
-      redirect_to namespace_project_deploy_keys_path(@project.namespace,
+      redirect_to namespace_project_deploy_keys_path(@project.namespace, @project)
-                                                     @project)
    else
      render "index"
    end
  end
  def enable
-    @key = accessible_keys.find(params[:id])
+    Projects::EnableDeployKeyService.new(@project, current_user, params).execute
-    @project.deploy_keys << @key
-    redirect_to namespace_project_deploy_keys_path(@project.namespace,
+    redirect_to namespace_project_deploy_keys_path(@project.namespace, @project)
-                                                   @project)
  end
  def disable
@@ -47,7 +43,7 @@ class Projects::DeployKeysController < Projects::ApplicationController
  def set_index_vars
    @enabled_keys           ||= @project.deploy_keys
-    @available_keys         ||= accessible_keys - @enabled_keys
+    @available_keys         ||= current_user.accessible_deploy_keys - @enabled_keys
    @available_project_keys ||= current_user.project_deploy_keys - @enabled_keys
    @available_public_keys  ||= DeployKey.are_public - @enabled_keys
@@ -56,10 +52,6 @@ class Projects::DeployKeysController < Projects::ApplicationController
    @available_public_keys -= @available_project_keys
  end
-  def accessible_keys
-    @accessible_keys ||= current_user.accessible_deploy_keys
-  end
  def deploy_key_params
    params.require(:deploy_key).permit(:key, :title)
  end

--- a/app/controllers/projects/git_http_client_controller.rb
+++ b/app/controllers/projects/git_http_client_controller.rb
+# This file should be identical in GitLab Community Edition and Enterprise Edition
+class Projects::GitHttpClientController < Projects::ApplicationController
+  include ActionController::HttpAuthentication::Basic
+  include KerberosSpnegoHelper
+  attr_reader :user
+  # Git clients will not know what authenticity token to send along
+  skip_before_action :verify_authenticity_token
+  skip_before_action :repository
+  before_action :authenticate_user
+  before_action :ensure_project_found!
+  private
+  def authenticate_user
+    if project && project.public? && download_request?
+      return # Allow access
+    end
+    if allow_basic_auth? && basic_auth_provided?
+      login, password = user_name_and_password(request)
+      auth_result = Gitlab::Auth.find_for_git_client(login, password, project: project, ip: request.ip)
+      if auth_result.type == :ci && download_request?
+        @ci = true
+      elsif auth_result.type == :oauth && !download_request?
+        # Not allowed
+      else
+        @user = auth_result.user
+      end
+      if ci? || user
+        return # Allow access
+      end
+    elsif allow_kerberos_spnego_auth? && spnego_provided?
+      @user = find_kerberos_user
+      if user
+        send_final_spnego_response
+        return # Allow access
+      end
+    end
+    send_challenges
+    render plain: "HTTP Basic: Access denied\n", status: 401
+  end
+  def basic_auth_provided?
+    has_basic_credentials?(request)
+  end
+  def send_challenges
+    challenges = []
+    challenges << 'Basic realm="GitLab"' if allow_basic_auth?
+    challenges << spnego_challenge if allow_kerberos_spnego_auth?
+    headers['Www-Authenticate'] = challenges.join("\n") if challenges.any?
+  end
+  def ensure_project_found!
+    render_not_found if project.blank?
+  end
+  def project
+    return @project if defined?(@project)
+    project_id, _ = project_id_with_suffix
+    if project_id.blank?
+      @project = nil
+    else
+      @project = Project.find_with_namespace("#{params[:namespace_id]}/#{project_id}")
+    end
+  end
+  # This method returns two values so that we can parse
+  # params[:project_id] (untrusted input!) in exactly one place.
+  def project_id_with_suffix
+    id = params[:project_id] || ''
+    %w[.wiki.git .git].each do |suffix|
+      if id.end_with?(suffix)
+        # Be careful to only remove the suffix from the end of 'id'.
+        # Accidentally removing it from the middle is how security
+        # vulnerabilities happen!
+        return [id.slice(0, id.length - suffix.length), suffix]
+      end
+    end
+    # Something is wrong with params[:project_id]; do not pass it on.
+    [nil, nil]
+  end
+  def repository
+    _, suffix = project_id_with_suffix
+    if suffix == '.wiki.git'
+      project.wiki.repository
+    else
+      project.repository
+    end
+  end
+  def render_not_found
+    render plain: 'Not Found', status: :not_found
+  end
+  def ci?
+    @ci.present?
+  end
+end
--- a/app/controllers/projects/git_http_controller.rb
+++ b/app/controllers/projects/git_http_controller.rb
 # This file should be identical in GitLab Community Edition and Enterprise Edition
-class Projects::GitHttpController < Projects::ApplicationController
+class Projects::GitHttpController < Projects::GitHttpClientController
-  include ActionController::HttpAuthentication::Basic
-  include KerberosSpnegoHelper
-  attr_reader :user
-  # Git clients will not know what authenticity token to send along
-  skip_before_action :verify_authenticity_token
-  skip_before_action :repository
-  before_action :authenticate_user
-  before_action :ensure_project_found!
  # GET /foo/bar.git/info/refs?service=git-upload-pack (git pull)
  # GET /foo/bar.git/info/refs?service=git-receive-pack (git push)
  def info_refs
@@ -20,9 +9,9 @@ class Projects::GitHttpController < Projects::ApplicationController
    elsif receive_pack? && receive_pack_allowed?
      render_ok
    elsif http_blocked?
-      render_not_allowed
+      render_http_not_allowed
    else
-      render_not_found
+      render_denied
    end
  end
@@ -31,7 +20,7 @@ class Projects::GitHttpController < Projects::ApplicationController
    if upload_pack? && upload_pack_allowed?
      render_ok
    else
-      render_not_found
+      render_denied
    end
  end
@@ -40,87 +29,14 @@ class Projects::GitHttpController < Projects::ApplicationController
    if receive_pack? && receive_pack_allowed?
      render_ok
    else
-      render_not_found
+      render_denied
    end
  end
  private
-  def authenticate_user
+  def download_request?
-    if project && project.public? && upload_pack?
+    upload_pack?
-      return # Allow access
-    end
-    if allow_basic_auth? && basic_auth_provided?
-      login, password = user_name_and_password(request)
-      auth_result = Gitlab::Auth.find_for_git_client(login, password, project: project, ip: request.ip)
-      if auth_result.type == :ci && upload_pack?
-        @ci = true
-      elsif auth_result.type == :oauth && !upload_pack?
-        # Not allowed
-      else
-        @user = auth_result.user
-      end
-      if ci? || user
-        return # Allow access
-      end
-    elsif allow_kerberos_spnego_auth? && spnego_provided?
-      @user = find_kerberos_user
-      if user
-        send_final_spnego_response
-        return # Allow access
-      end
-    end
-    send_challenges
-    render plain: "HTTP Basic: Access denied\n", status: 401
-  end
-  def basic_auth_provided?
-    has_basic_credentials?(request)
-  end
-  def send_challenges
-    challenges = []
-    challenges << 'Basic realm="GitLab"' if allow_basic_auth?
-    challenges << spnego_challenge if allow_kerberos_spnego_auth?
-    headers['Www-Authenticate'] = challenges.join("\n") if challenges.any?
-  end
-  def ensure_project_found!
-    render_not_found if project.blank?
-  end
-  def project
-    return @project if defined?(@project)
-    project_id, _ = project_id_with_suffix
-    if project_id.blank?
-      @project = nil
-    else
-      @project = Project.find_with_namespace("#{params[:namespace_id]}/#{project_id}")
-    end
-  end
-  # This method returns two values so that we can parse
-  # params[:project_id] (untrusted input!) in exactly one place.
-  def project_id_with_suffix
-    id = params[:project_id] || ''
-    %w[.wiki.git .git].each do |suffix|
-      if id.end_with?(suffix)
-        # Be careful to only remove the suffix from the end of 'id'.
-        # Accidentally removing it from the middle is how security
-        # vulnerabilities happen!
-        return [id.slice(0, id.length - suffix.length), suffix]
-      end
-    end
-    # Something is wrong with params[:project_id]; do not pass it on.
-    [nil, nil]
  end
  def upload_pack?
@@ -143,47 +59,37 @@ class Projects::GitHttpController < Projects::ApplicationController
    render json: Gitlab::Workhorse.git_http_ok(repository, user)
  end
-  def repository
+  def render_http_not_allowed
-    _, suffix = project_id_with_suffix
+    render plain: access_check.message, status: :forbidden
-    if suffix == '.wiki.git'
-      project.wiki.repository
-    else
-      project.repository
-    end
-  end
-  def render_not_found
-    render plain: 'Not Found', status: :not_found
  end
-  def render_not_allowed
+  def render_denied
-    render plain: download_access.message, status: :forbidden
+    if user && user.can?(:read_project, project)
+      render plain: 'Access denied', status: :forbidden
+    else
+      # Do not leak information about project existence
+      render_not_found
    end
-  def ci?
-    @ci.present?
  end
  def upload_pack_allowed?
    return false unless Gitlab.config.gitlab_shell.upload_pack
    if user
-      download_access.allowed?
+      access_check.allowed?
    else
      ci? || project.public?
    end
  end
  def access
-    return @access if defined?(@access)
+    @access ||= Gitlab::GitAccess.new(user, project, 'http')
-    @access = Gitlab::GitAccess.new(user, project, 'http')
  end
-  def download_access
+  def access_check
-    return @download_access if defined?(@download_access)
+    # Use the magic string '_any' to indicate we do not know what the
+    # changes are. This is also what gitlab-shell does.
-    @download_access = access.check('git-upload-pack')
+    @access_check ||= access.check(git_command, '_any')
  end
  def http_blocked?
@@ -193,8 +99,6 @@ class Projects::GitHttpController < Projects::ApplicationController
  def receive_pack_allowed?
    return false unless Gitlab.config.gitlab_shell.receive_pack
-    # Skip user authorization on upload request.
+    access_check.allowed?
-    # It will be done by the pre-receive hook in the repository.
-    user.present?
  end
 end
--- a/app/controllers/projects/lfs_api_controller.rb
+++ b/app/controllers/projects/lfs_api_controller.rb
+class Projects::LfsApiController < Projects::GitHttpClientController
+  include LfsHelper
+  before_action :require_lfs_enabled!
+  before_action :lfs_check_access!, except: [:deprecated]
+  def batch
+    unless objects.present?
+      render_lfs_not_found
+      return
+    end
+    if download_request?
+      render json: { objects: download_objects! }
+    elsif upload_request?
+      render json: { objects: upload_objects! }
+    else
+      raise "Never reached"
+    end
+  end
+  def deprecated
+    render(
+      json: {
+        message: 'Server supports batch API only, please update your Git LFS client to version 1.0.1 and up.',
+        documentation_url: "#{Gitlab.config.gitlab.url}/help",
+      },
+      status: 501
+    )
+  end
+  private
+  def objects
+    @objects ||= (params[:objects] || []).to_a
+  end
+  def existing_oids
+    @existing_oids ||= begin
+      storage_project.lfs_objects.where(oid: objects.map { |o| o['oid'].to_s }).pluck(:oid)
+    end
+  end
+  def download_objects!
+    objects.each do |object|
+      if existing_oids.include?(object[:oid])
+        object[:actions] = download_actions(object)
+      else
+        object[:error] = {
+          code: 404,
+          message: "Object does not exist on the server or you don't have permissions to access it",
+        }
+      end
+    end
+    objects
+  end
+  def upload_objects!
+    objects.each do |object|
+      object[:actions] = upload_actions(object) unless existing_oids.include?(object[:oid])
+    end
+    objects
+  end
+  def download_actions(object)
+    {
+      download: {
+        href: "#{project.http_url_to_repo}/gitlab-lfs/objects/#{object[:oid]}",
+        header: {
+          Authorization: request.headers['Authorization']
+        }.compact
+      }
+    }
+  end
+  def upload_actions(object)
+    {
+      upload: {
+        href: "#{project.http_url_to_repo}/gitlab-lfs/objects/#{object[:oid]}/#{object[:size]}",
+        header: {
+          Authorization: request.headers['Authorization']
+        }.compact
+      }
+    }
+  end
+  def download_request?
+    params[:operation] == 'download'
+  end
+  def upload_request?
+    params[:operation] == 'upload'
+  end
+end
--- a/app/controllers/projects/lfs_storage_controller.rb
+++ b/app/controllers/projects/lfs_storage_controller.rb
+class Projects::LfsStorageController < Projects::GitHttpClientController
+  include LfsHelper
+  before_action :require_lfs_enabled!
+  before_action :lfs_check_access!
+  def download
+    lfs_object = LfsObject.find_by_oid(oid)
+    unless lfs_object && lfs_object.file.exists?
+      render_lfs_not_found
+      return
+    end
+    send_file lfs_object.file.path, content_type: "application/octet-stream"
+  end
+  def upload_authorize
+    render(
+      json: {
+        StoreLFSPath: "#{Gitlab.config.lfs.storage_path}/tmp/upload",
+        LfsOid: oid,
+        LfsSize: size,
+      },
+      content_type: 'application/json; charset=utf-8'
+    )
+  end
+  def upload_finalize
+    unless tmp_filename
+      render_lfs_forbidden
+      return
+    end
+    if store_file(oid, size, tmp_filename)
+      head 200
+    else
+      render plain: 'Unprocessable entity', status: 422
+    end
+  end
+  private
+  def download_request?
+    action_name == 'download'
+  end
+  def upload_request?
+    %w[upload_authorize upload_finalize].include? action_name
+  end
+  def oid
+    params[:oid].to_s
+  end
+  def size
+    params[:size].to_i
+  end
+  def tmp_filename
+    name = request.headers['X-Gitlab-Lfs-Tmp']
+    return if name.include?('/')
+    return unless oid.present? && name.start_with?(oid)
+    name
+  end
+  def store_file(oid, size, tmp_file)
+    # Define tmp_file_path early because we use it in "ensure"
+    tmp_file_path = File.join("#{Gitlab.config.lfs.storage_path}/tmp/upload", tmp_file)
+    object = LfsObject.find_or_create_by(oid: oid, size: size)
+    file_exists = object.file.exists? || move_tmp_file_to_storage(object, tmp_file_path)
+    file_exists && link_to_project(object)
+  ensure
+    FileUtils.rm_f(tmp_file_path)
+  end
+  def move_tmp_file_to_storage(object, path)
+    File.open(path) do |f|
+      object.file = f
+    end
+    object.file.store!
+    object.save
+  end
+  def link_to_project(object)
+    if object && !object.projects.exists?(storage_project.id)
+      object.projects << storage_project
+      object.save
+    end
+  end
+end
--- a/app/controllers/projects/merge_requests_controller.rb
+++ b/app/controllers/projects/merge_requests_controller.rb
@@ -160,7 +160,7 @@ class Projects::MergeRequestsController < Projects::ApplicationController
    @diff_notes_disabled = true
    @pipeline = @merge_request.pipeline
-    @statuses = @pipeline.statuses if @pipeline
+    @statuses = @pipeline.statuses.relevant if @pipeline
    @note_counts = Note.where(commit_id: @commits.map(&:id)).
      group(:commit_id).count
@@ -362,7 +362,7 @@ class Projects::MergeRequestsController < Projects::ApplicationController
    @commits_count = @merge_request.commits.count
    @pipeline = @merge_request.pipeline
-    @statuses = @pipeline.statuses if @pipeline
+    @statuses = @pipeline.statuses.relevant if @pipeline
    if @merge_request.locked_long_ago?
      @merge_request.unlock_mr

--- a/app/controllers/projects/pipelines_controller.rb
+++ b/app/controllers/projects/pipelines_controller.rb
@@ -19,7 +19,7 @@ class Projects::PipelinesController < Projects::ApplicationController
  end
  def create
-    @pipeline = Ci::CreatePipelineService.new(project, current_user, create_params).execute
+    @pipeline = Ci::CreatePipelineService.new(project, current_user, create_params).execute(ignore_skip_ci: true, save_on_errors: false)
    unless @pipeline.persisted?
      render 'new'
      return

--- a/app/controllers/projects/pipelines_settings_controller.rb
+++ b/app/controllers/projects/pipelines_settings_controller.rb
@@ -3,7 +3,7 @@ class Projects::PipelinesSettingsController < Projects::ApplicationController
  def show
    @ref = params[:ref] || @project.default_branch || 'master'
-    @build_badge = Gitlab::Badge::Build.new(@project, @ref)
+    @build_badge = Gitlab::Badge::Build.new(@project, @ref).metadata
  end
  def update

--- a/app/controllers/projects/wikis_controller.rb
+++ b/app/controllers/projects/wikis_controller.rb
@@ -91,7 +91,7 @@ class Projects::WikisController < Projects::ApplicationController
    )
  end
-  def markdown_preview
+  def preview_markdown
    text = params[:text]
    ext = Gitlab::ReferenceExtractor.new(@project, current_user)

--- a/app/controllers/projects_controller.rb
+++ b/app/controllers/projects_controller.rb
@@ -125,7 +125,7 @@ class ProjectsController < Projects::ApplicationController
  def destroy
    return access_denied! unless can?(current_user, :remove_project, @project)
-    ::Projects::DestroyService.new(@project, current_user, {}).pending_delete!
+    ::Projects::DestroyService.new(@project, current_user, {}).async_execute
    flash[:alert] = "Project '#{@project.name}' will be deleted."
    redirect_to dashboard_projects_path
@@ -238,7 +238,7 @@ class ProjectsController < Projects::ApplicationController
    }
  end
-  def markdown_preview
+  def preview_markdown
    text = params[:text]
    ext = Gitlab::ReferenceExtractor.new(@project, current_user)

--- a/app/controllers/registrations_controller.rb
+++ b/app/controllers/registrations_controller.rb
@@ -33,7 +33,7 @@ class RegistrationsController < Devise::RegistrationsController
  protected
-  def build_resource(hash=nil)
+  def build_resource(hash = nil)
    super
  end

--- a/app/helpers/avatars_helper.rb
+++ b/app/helpers/avatars_helper.rb
 module AvatarsHelper
  def author_avatar(commit_or_event, options = {})
    user_avatar(options.merge({
      user: commit_or_event.author,
@@ -8,8 +7,6 @@ module AvatarsHelper
    }))
  end
-  private
  def user_avatar(options = {})
    avatar_size = options[:size] || 16
    user_name = options[:user].try(:name) || options[:user_name]
@@ -26,5 +23,4 @@ module AvatarsHelper
      mail_to(options[:user_email], avatar)
    end
  end
 end
--- a/app/helpers/diff_helper.rb
+++ b/app/helpers/diff_helper.rb
@@ -109,11 +109,10 @@ module DiffHelper
    end
  end
-  def diff_file_html_data(project, diff_file)
+  def diff_file_html_data(project, diff_file_path, diff_commit_id)
-    commit = commit_for_diff(diff_file)
    {
      blob_diff_path: namespace_project_blob_diff_path(project.namespace, project,
-                                                       tree_join(commit.id, diff_file.file_path)),
+                                                       tree_join(diff_commit_id, diff_file_path)),
      view: diff_view
    }
  end

--- a/app/helpers/explore_helper.rb
+++ b/app/helpers/explore_helper.rb
 module ExploreHelper
-  def filter_projects_path(options={})
+  def filter_projects_path(options = {})
    exist_opts = {
      sort: params[:sort],
      scope: params[:scope],

--- a/app/helpers/lfs_helper.rb
+++ b/app/helpers/lfs_helper.rb
+module LfsHelper
+  def require_lfs_enabled!
+    return if Gitlab.config.lfs.enabled
+    render(
+      json: {
+        message: 'Git LFS is not enabled on this GitLab server, contact your admin.',
+        documentation_url: "#{Gitlab.config.gitlab.url}/help",
+      },
+      status: 501
+    )
+  end
+  def lfs_check_access!
+    return if download_request? && lfs_download_access?
+    return if upload_request? && lfs_upload_access?
+    if project.public? || (user && user.can?(:read_project, project))
+      render_lfs_forbidden
+    else
+      render_lfs_not_found
+    end
+  end
+  def lfs_download_access?
+    project.public? || ci? || (user && user.can?(:download_code, project))
+  end
+  def lfs_upload_access?
+    user && user.can?(:push_code, project)
+  end
+  def render_lfs_forbidden
+    render(
+      json: {
+        message: 'Access forbidden. Check your access level.',
+        documentation_url: "#{Gitlab.config.gitlab.url}/help",
+      },
+      content_type: "application/vnd.git-lfs+json",
+      status: 403
+    )
+  end
+  def render_lfs_not_found
+    render(
+      json: {
+        message: 'Not found.',
+        documentation_url: "#{Gitlab.config.gitlab.url}/help",
+      },
+      content_type: "application/vnd.git-lfs+json",
+      status: 404
+    )
+  end
+  def storage_project
+    @storage_project ||= begin
+      result = project
+      loop do
+        break unless result.forked?
+        result = result.forked_from_project
+      end
+      result
+    end
+  end
+end
--- a/app/helpers/members_helper.rb
+++ b/app/helpers/members_helper.rb
@@ -6,12 +6,6 @@ module MembersHelper
    "#{action}_#{member.type.underscore}".to_sym
  end
-  def default_show_roles(member)
-    can?(current_user, action_member_permission(:update, member), member) ||
-      can?(current_user, action_member_permission(:destroy, member), member) ||
-      can?(current_user, action_member_permission(:admin, member), member.source)
-  end
  def remove_member_message(member, user: nil)
    user = current_user if defined?(current_user)

--- a/app/helpers/search_helper.rb
+++ b/app/helpers/search_helper.rb
@@ -107,7 +107,7 @@ module SearchHelper
    Sanitize.clean(str)
  end
-  def search_filter_path(options={})
+  def search_filter_path(options = {})
    exist_opts = {
      search: params[:search],
      project_id: params[:project_id],

--- a/app/helpers/tree_helper.rb
+++ b/app/helpers/tree_helper.rb
@@ -4,23 +4,11 @@ module TreeHelper
  #
  # contents - A Grit::Tree object for the current tree
  def render_tree(tree)
-    # Render Folders before Files/Submodules
+    # Sort submodules and folders together by name ahead of files
    folders, files, submodules = tree.trees, tree.blobs, tree.submodules
    tree = ""
+    items = (folders + submodules).sort_by(&:name) + files
-    # Render folders if we have any
+    tree << render(partial: "projects/tree/tree_row", collection: items) if items.present?
-    tree << render(partial: 'projects/tree/tree_item', collection: folders,
-                   locals: { type: 'folder' }) if folders.present?
-    # Render files if we have any
-    tree << render(partial: 'projects/tree/blob_item', collection: files,
-                   locals: { type: 'file' }) if files.present?
-    # Render submodules if we have any
-    tree << render(partial: 'projects/tree/submodule_item',
-                   collection: submodules) if submodules.present?
    tree.html_safe
  end

--- a/app/models/ci/build.rb
+++ b/app/models/ci/build.rb
@@ -16,7 +16,7 @@ module Ci
    scope :with_artifacts_not_expired, ->() { with_artifacts.where('artifacts_expire_at IS NULL OR artifacts_expire_at > ?', Time.now) }
    scope :with_expired_artifacts, ->() { with_artifacts.where('artifacts_expire_at < ?', Time.now) }
    scope :last_month, ->() { where('created_at > ?', Date.today - 1.month) }
-    scope :manual_actions, ->() { where(when: :manual) }
+    scope :manual_actions, ->() { where(when: :manual).relevant }
    mount_uploader :artifacts_file, ArtifactUploader
    mount_uploader :artifacts_metadata, ArtifactUploader
@@ -42,40 +42,35 @@ module Ci
      end
      def retry(build, user = nil)
-        new_build = Ci::Build.new(status: 'pending')
+        new_build = Ci::Build.create(
-        new_build.ref = build.ref
+          ref: build.ref,
-        new_build.tag = build.tag
+          tag: build.tag,
-        new_build.options = build.options
+          options: build.options,
-        new_build.commands = build.commands
+          commands: build.commands,
-        new_build.tag_list = build.tag_list
+          tag_list: build.tag_list,
-        new_build.project = build.project
+          project: build.project,
-        new_build.pipeline = build.pipeline
+          pipeline: build.pipeline,
-        new_build.name = build.name
+          name: build.name,
-        new_build.allow_failure = build.allow_failure
+          allow_failure: build.allow_failure,
-        new_build.stage = build.stage
+          stage: build.stage,
-        new_build.stage_idx = build.stage_idx
+          stage_idx: build.stage_idx,
-        new_build.trigger_request = build.trigger_request
+          trigger_request: build.trigger_request,
-        new_build.yaml_variables = build.yaml_variables
+          yaml_variables: build.yaml_variables,
-        new_build.when = build.when
+          when: build.when,
-        new_build.user = user
+          user: user,
-        new_build.environment = build.environment
+          environment: build.environment,
-        new_build.save
+          status_event: 'enqueue'
+        )
        MergeRequests::AddTodoWhenBuildFailsService.new(build.project, nil).close(new_build)
        new_build
      end
    end
-    state_machine :status, initial: :pending do
+    state_machine :status do
      after_transition pending: :running do |build|
        build.execute_hooks
      end
-      # We use around_transition to create builds for next stage as soon as possible, before the `after_*` is executed
-      around_transition any => [:success, :failed, :canceled] do |build, block|
-        block.call
-        build.pipeline.create_next_builds(build) if build.pipeline
-      end
      after_transition any => [:success, :failed, :canceled] do |build|
        build.update_coverage
        build.execute_hooks
@@ -107,7 +102,7 @@ module Ci
    def play(current_user = nil)
      # Try to queue a current build
-      if self.queue
+      if self.enqueue
        self.update(user: current_user)
        self
      else

--- a/app/models/ci/pipeline.rb
+++ b/app/models/ci/pipeline.rb
@@ -13,13 +13,51 @@ module Ci
    has_many :trigger_requests, dependent: :destroy, class_name: 'Ci::TriggerRequest', foreign_key: :commit_id
    validates_presence_of :sha
+    validates_presence_of :ref
    validates_presence_of :status
    validate :valid_commit_sha
-    # Invalidate object and save if when touched
-    after_touch :update_state
    after_save :keep_around_commits
+    state_machine :status, initial: :created do
+      event :enqueue do
+        transition created: :pending
+        transition [:success, :failed, :canceled, :skipped] => :running
+      end
+      event :run do
+        transition any => :running
+      end
+      event :skip do
+        transition any => :skipped
+      end
+      event :drop do
+        transition any => :failed
+      end
+      event :succeed do
+        transition any => :success
+      end
+      event :cancel do
+        transition any => :canceled
+      end
+      before_transition [:created, :pending] => :running do |pipeline|
+        pipeline.started_at = Time.now
+      end
+      before_transition any => [:success, :failed, :canceled] do |pipeline|
+        pipeline.finished_at = Time.now
+      end
+      before_transition do |pipeline|
+        pipeline.update_duration
+      end
+    end
    # ref can't be HEAD or SHA, can only be branch/tag name
    scope :latest_successful_for, ->(ref = default_branch) do
      where(ref: ref).success.order(id: :desc).limit(1)
@@ -109,37 +147,6 @@ module Ci
      trigger_requests.any?
    end
-    def create_builds(user, trigger_request = nil)
-      ##
-      # We persist pipeline only if there are builds available
-      #
-      return unless config_processor
-      build_builds_for_stages(config_processor.stages, user,
-                              'success', trigger_request) && save
-    end
-    def create_next_builds(build)
-      return unless config_processor
-      # don't create other builds if this one is retried
-      latest_builds = builds.latest
-      return unless latest_builds.exists?(build.id)
-      # get list of stages after this build
-      next_stages = config_processor.stages.drop_while { |stage| stage != build.stage }
-      next_stages.delete(build.stage)
-      # get status for all prior builds
-      prior_builds = latest_builds.where.not(stage: next_stages)
-      prior_status = prior_builds.status
-      # build builds for next stage that has builds available
-      # and save pipeline if we have builds
-      build_builds_for_stages(next_stages, build.user, prior_status,
-                              build.trigger_request) && save
-    end
    def retried
      @retried ||= (statuses.order(id: :desc) - statuses.latest)
    end
@@ -151,6 +158,14 @@ module Ci
      end
    end
+    def config_builds_attributes
+      return [] unless config_processor
+      config_processor.
+        builds_for_ref(ref, tag?, trigger_requests.first).
+        sort_by { |build| build[:stage_idx] }
+    end
    def has_warnings?
      builds.latest.ignored.any?
    end
@@ -182,10 +197,6 @@ module Ci
      end
    end
-    def skip_ci?
-      git_commit_message =~ /\[(ci skip|skip ci)\]/i if git_commit_message
-    end
    def environments
      builds.where.not(environment: nil).success.pluck(:environment).uniq
    end
@@ -207,37 +218,37 @@ module Ci
      Note.for_commit_id(sha)
    end
+    def process!
+      Ci::ProcessPipelineService.new(project, user).execute(self)
+    end
+    def build_updated
+      case latest_builds_status
+      when 'pending' then enqueue
+      when 'running' then run
+      when 'success' then succeed
+      when 'failed' then drop
+      when 'canceled' then cancel
+      when 'skipped' then skip
+      end
+    end
    def predefined_variables
      [
        { key: 'CI_PIPELINE_ID', value: id.to_s, public: true }
      ]
    end
+    def update_duration
+      self.duration = statuses.latest.duration
+    end
    private
-    def build_builds_for_stages(stages, user, status, trigger_request)
+    def latest_builds_status
-      ##
+      return 'failed' unless yaml_errors.blank?
-      # Note that `Array#any?` implements a short circuit evaluation, so we
-      # build builds only for the first stage that has builds available.
-      #
-      stages.any? do |stage|
-        CreateBuildsService.new(self).
-          execute(stage, user, status, trigger_request).
-          any?(&:active?)
-      end
-    end
-    def update_state
-      statuses.reload
-      self.status = if yaml_errors.blank?
      statuses.latest.status || 'skipped'
-                    else
-                      'failed'
-                    end
-      self.started_at = statuses.started_at
-      self.finished_at = statuses.finished_at
-      self.duration = statuses.latest.duration
-      save
    end
    def keep_around_commits

--- a/app/models/commit_status.rb
+++ b/app/models/commit_status.rb
@@ -5,7 +5,7 @@ class CommitStatus < ActiveRecord::Base
  self.table_name = 'ci_builds'
  belongs_to :project, class_name: '::Project', foreign_key: :gl_project_id
-  belongs_to :pipeline, class_name: 'Ci::Pipeline', foreign_key: :commit_id, touch: true
+  belongs_to :pipeline, class_name: 'Ci::Pipeline', foreign_key: :commit_id
  belongs_to :user
  delegate :commit, to: :pipeline
@@ -25,28 +25,36 @@ class CommitStatus < ActiveRecord::Base
  scope :ordered, -> { order(:name) }
  scope :ignored, -> { where(allow_failure: true, status: [:failed, :canceled]) }
-  state_machine :status, initial: :pending do
+  state_machine :status do
-    event :queue do
+    event :enqueue do
-      transition skipped: :pending
+      transition [:created, :skipped] => :pending
    end
    event :run do
      transition pending: :running
    end
+    event :skip do
+      transition [:created, :pending] => :skipped
+    end
    event :drop do
-      transition [:pending, :running] => :failed
+      transition [:created, :pending, :running] => :failed
    end
    event :success do
-      transition [:pending, :running] => :success
+      transition [:created, :pending, :running] => :success
    end
    event :cancel do
-      transition [:pending, :running] => :canceled
+      transition [:created, :pending, :running] => :canceled
    end
-    after_transition pending: :running do |commit_status|
+    after_transition created: [:pending, :running] do |commit_status|
+      commit_status.update_attributes queued_at: Time.now
+    end
+    after_transition [:created, :pending] => :running do |commit_status|
      commit_status.update_attributes started_at: Time.now
    end
@@ -54,7 +62,18 @@ class CommitStatus < ActiveRecord::Base
      commit_status.update_attributes finished_at: Time.now
    end
-    after_transition [:pending, :running] => :success do |commit_status|
+    # We use around_transition to process pipeline on next stages as soon as possible, before the `after_*` is executed
+    around_transition any => [:success, :failed, :canceled] do |commit_status, block|
+      block.call
+      commit_status.pipeline.try(:process!)
+    end
+    after_transition do |commit_status, transition|
+      commit_status.pipeline.try(:build_updated) unless transition.loopback?
+    end
+    after_transition [:created, :pending, :running] => :success do |commit_status|
      MergeRequests::MergeWhenBuildSucceedsService.new(commit_status.pipeline.project, nil).trigger(commit_status)
    end

--- a/app/models/concerns/statuseable.rb
+++ b/app/models/concerns/statuseable.rb
 module Statuseable
  extend ActiveSupport::Concern
-  AVAILABLE_STATUSES = %w(pending running success failed canceled skipped)
+  AVAILABLE_STATUSES = %w[created pending running success failed canceled skipped]
+  STARTED_STATUSES = %w[running success failed skipped]
+  ACTIVE_STATUSES = %w[pending running]
+  COMPLETED_STATUSES = %w[success failed canceled]
  class_methods do
    def status_sql
-      builds = all.select('count(*)').to_sql
+      scope = all.relevant
-      success = all.success.select('count(*)').to_sql
+      builds = scope.select('count(*)').to_sql
-      ignored = all.ignored.select('count(*)').to_sql if all.respond_to?(:ignored)
+      success = scope.success.select('count(*)').to_sql
+      ignored = scope.ignored.select('count(*)').to_sql if scope.respond_to?(:ignored)
      ignored ||= '0'
-      pending = all.pending.select('count(*)').to_sql
+      pending = scope.pending.select('count(*)').to_sql
-      running = all.running.select('count(*)').to_sql
+      running = scope.running.select('count(*)').to_sql
-      canceled = all.canceled.select('count(*)').to_sql
+      canceled = scope.canceled.select('count(*)').to_sql
-      skipped = all.skipped.select('count(*)').to_sql
+      skipped = scope.skipped.select('count(*)').to_sql
      deduce_status = "(CASE
        WHEN (#{builds})=0 THEN NULL
@@ -48,7 +52,8 @@ module Statuseable
  included do
    validates :status, inclusion: { in: AVAILABLE_STATUSES }
-    state_machine :status, initial: :pending do
+    state_machine :status, initial: :created do
+      state :created, value: 'created'
      state :pending, value: 'pending'
      state :running, value: 'running'
      state :failed, value: 'failed'
@@ -57,6 +62,8 @@ module Statuseable
      state :skipped, value: 'skipped'
    end
+    scope :created, -> { where(status: 'created') }
+    scope :relevant, -> { where.not(status: 'created') }
    scope :running, -> { where(status: 'running') }
    scope :pending, -> { where(status: 'pending') }
    scope :success, -> { where(status: 'success') }
@@ -68,14 +75,14 @@ module Statuseable
  end
  def started?
-    !pending? && !canceled? && started_at
+    STARTED_STATUSES.include?(status) && started_at
  end
  def active?
-    running? || pending?
+    ACTIVE_STATUSES.include?(status)
  end
  def complete?
-    canceled? || success? || failed?
+    COMPLETED_STATUSES.include?(status)
  end
 end
--- a/app/models/members/project_member.rb
+++ b/app/models/members/project_member.rb
@@ -8,6 +8,7 @@ class ProjectMember < Member
  # Make sure project member points only to project as it source
  default_value_for :source_type, SOURCE_TYPE
  validates_format_of :source_type, with: /\AProject\z/
+  validates :access_level, inclusion: { in: Gitlab::Access.values }
  default_scope { where(source_type: SOURCE_TYPE) }
  scope :in_project, ->(project) { where(source_id: project.id) }

--- a/app/models/merge_request.rb
+++ b/app/models/merge_request.rb
@@ -104,6 +104,7 @@ class MergeRequest < ActiveRecord::Base
  scope :from_project, ->(project) { where(source_project_id: project.id) }
  scope :merged, -> { with_state(:merged) }
  scope :closed_and_merged, -> { with_states(:closed, :merged) }
+  scope :from_source_branches, ->(branches) { where(source_branch: branches) }
  scope :join_project, -> { joins(:target_project) }
  scope :references_project, -> { references(:target_project) }

--- a/app/models/merge_request_diff.rb
+++ b/app/models/merge_request_diff.rb
@@ -36,7 +36,7 @@ class MergeRequestDiff < ActiveRecord::Base
    real_size.presence || raw_diffs.size
  end
-  def raw_diffs(options={})
+  def raw_diffs(options = {})
    if options[:ignore_whitespace_change]
      @raw_diffs_no_whitespace ||= begin
        compare = Gitlab::Git::Compare.new(

--- a/app/models/project.rb
+++ b/app/models/project.rb
@@ -378,6 +378,12 @@ class Project < ActiveRecord::Base
      joins(join_body).reorder('join_note_counts.amount DESC')
    end
+    def cached_count
+      Rails.cache.fetch('total_project_count', expires_in: 5.minutes) do
+        Project.count
+      end
+    end
  end
  def repository_storage_path
@@ -993,6 +999,10 @@ class Project < ActiveRecord::Base
    project_members.find_by(user_id: user)
  end
+  def add_user(user, access_level, current_user = nil)
+    team.add_user(user, access_level, current_user)
+  end
  def default_branch
    @default_branch ||= repository.root_ref if repository.exists?
  end
@@ -1155,16 +1165,6 @@ class Project < ActiveRecord::Base
    @wiki ||= ProjectWiki.new(self, self.owner)
  end
-  def schedule_delete!(user_id, params)
-    # Queue this task for after the commit, so once we mark pending_delete it will run
-    run_after_commit do
-      job_id = ProjectDestroyWorker.perform_async(id, user_id, params)
-      Rails.logger.info("User #{user_id} scheduled destruction of project #{path_with_namespace} with job ID #{job_id}")
-    end
-    update_attribute(:pending_delete, true)
-  end
  def running_or_pending_build_count(force: false)
    Rails.cache.fetch(['projects', id, 'running_or_pending_build_count'], force: force) do
      builds.running_or_pending.count(:all)

--- a/app/models/project_services/campfire_service.rb
+++ b/app/models/project_services/campfire_service.rb
 class CampfireService < Service
+  include HTTParty
  prop_accessor :token, :subdomain, :room
  validates :token, presence: true, if: :activated?
@@ -29,18 +31,53 @@ class CampfireService < Service
  def execute(data)
    return unless supported_events.include?(data[:object_kind])
-    room = gate.find_room_by_name(self.room)
+    self.class.base_uri base_uri
-    return true unless room
    message = build_message(data)
+    speak(self.room, message, auth)
-    room.speak(message)
  end
  private
-  def gate
+  def base_uri
-    @gate ||= Tinder::Campfire.new(subdomain, token: token)
+    @base_uri ||= "https://#{subdomain}.campfirenow.com"
+  end
+  def auth
+    # use a dummy password, as explained in the Campfire API doc:
+    # https://github.com/basecamp/campfire-api#authentication
+    @auth ||= {
+      basic_auth: {
+        username: token,
+        password: 'X'
+      }
+    }
+  end
+  # Post a message into a room, returns the message Hash in case of success.
+  # Returns nil otherwise.
+  # https://github.com/basecamp/campfire-api/blob/master/sections/messages.md#create-message
+  def speak(room_name, message, auth)
+    room = rooms(auth).find { |r| r["name"] == room_name }
+    return nil unless room
+    path = "/room/#{room["id"]}/speak.json"
+    body = {
+      body: {
+        message: {
+          type: 'TextMessage',
+          body: message
+        }
+      }
+    }
+    res = self.class.post(path, auth.merge(body))
+    res.code == 201 ? res : nil
+  end
+  # Returns a list of rooms, or [].
+  # https://github.com/basecamp/campfire-api/blob/master/sections/rooms.md#get-rooms
+  def rooms(auth)
+    res = self.class.get("/rooms.json", auth) 
+    res.code == 200 ? res["rooms"] : []
  end
  def build_message(push)

--- a/app/models/repository.rb
+++ b/app/models/repository.rb
@@ -601,7 +601,7 @@ class Repository
    commit(sha)
  end
-  def next_branch(name, opts={})
+  def next_branch(name, opts = {})
    branch_ids = self.branch_names.map do |n|
      next 1 if n == name
      result = n.match(/\A#{name}-([0-9]+)\z/)
@@ -636,9 +636,7 @@ class Repository
  def tags_sorted_by(value)
    case value
    when 'name'
-      # Would be better to use `sort_by` but `version_sorter` only exposes
+      VersionSorter.rsort(tags) { |tag| tag.name }
-      # `sort` and `rsort`
-      VersionSorter.rsort(tag_names).map { |tag_name| find_tag(tag_name) }
    when 'updated_desc'
      tags_sorted_by_committed_date.reverse
    when 'updated_asc'

--- a/app/models/spam_report.rb
+++ b/app/models/spam_report.rb
-class SpamReport < ActiveRecord::Base
-  belongs_to :user
-  validates :user, presence: true
-end
--- a/app/models/user.rb
+++ b/app/models/user.rb
@@ -23,13 +23,13 @@ class User < ActiveRecord::Base
  default_value_for :theme_id, gitlab_config.default_theme
  attr_encrypted :otp_secret,
-    key:       Gitlab::Application.config.secret_key_base,
+    key:       Gitlab::Application.secrets.otp_key_base,
    mode:      :per_attribute_iv_and_salt,
    insecure_mode: true,
    algorithm: 'aes-256-cbc'
  devise :two_factor_authenticatable,
-         otp_secret_encryption_key: Gitlab::Application.config.secret_key_base
+         otp_secret_encryption_key: Gitlab::Application.secrets.otp_key_base
  devise :two_factor_backupable, otp_number_of_backup_codes: 10
  serialize :otp_backup_codes, JSON

--- a/app/services/ci/create_builds_service.rb
+++ b/app/services/ci/create_builds_service.rb
-module Ci
-  class CreateBuildsService
-    def initialize(pipeline)
-      @pipeline = pipeline
-      @config = pipeline.config_processor
-    end
-    def execute(stage, user, status, trigger_request = nil)
-      builds_attrs = @config.builds_for_stage_and_ref(stage, @pipeline.ref, @pipeline.tag, trigger_request)
-      # check when to create next build
-      builds_attrs = builds_attrs.select do |build_attrs|
-        case build_attrs[:when]
-        when 'on_success'
-          status == 'success'
-        when 'on_failure'
-          status == 'failed'
-        when 'always', 'manual'
-          %w(success failed).include?(status)
-        end
-      end
-      # don't create the same build twice
-      builds_attrs.reject! do |build_attrs|
-        @pipeline.builds.find_by(ref: @pipeline.ref,
-                                 tag: @pipeline.tag,
-                                 trigger_request: trigger_request,
-                                 name: build_attrs[:name])
-      end
-      builds_attrs.map do |build_attrs|
-        build_attrs.slice!(:name,
-                           :commands,
-                           :tag_list,
-                           :options,
-                           :allow_failure,
-                           :stage,
-                           :stage_idx,
-                           :environment,
-                           :when,
-                           :yaml_variables)
-        build_attrs.merge!(pipeline: @pipeline,
-                           ref: @pipeline.ref,
-                           tag: @pipeline.tag,
-                           trigger_request: trigger_request,
-                           user: user,
-                           project: @pipeline.project)
-        # TODO: The proper implementation for this is in
-        # https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/5295
-        build_attrs[:status] = 'skipped' if build_attrs[:when] == 'manual'
-        ##
-        # We do not persist new builds here.
-        # Those will be persisted when @pipeline is saved.
-        #
-        @pipeline.builds.new(build_attrs)
-      end
-    end
-  end
-end
--- a/app/services/ci/create_pipeline_builds_service.rb
+++ b/app/services/ci/create_pipeline_builds_service.rb
+module Ci
+  class CreatePipelineBuildsService < BaseService
+    attr_reader :pipeline
+    def execute(pipeline)
+      @pipeline = pipeline
+      new_builds.map do |build_attributes|
+        create_build(build_attributes)
+      end
+    end
+    private
+    def create_build(build_attributes)
+      build_attributes = build_attributes.merge(
+        pipeline: pipeline,
+        project: pipeline.project,
+        ref: pipeline.ref,
+        tag: pipeline.tag,
+        user: current_user,
+        trigger_request: trigger_request
+      )
+      pipeline.builds.create(build_attributes)
+    end
+    def new_builds
+      @new_builds ||= pipeline.config_builds_attributes.
+        reject { |build| existing_build_names.include?(build[:name]) }
+    end
+    def existing_build_names
+      @existing_build_names ||= pipeline.builds.pluck(:name)
+    end
+    def trigger_request
+      return @trigger_request if defined?(@trigger_request)
+      @trigger_request ||= pipeline.trigger_requests.first
+    end
+  end
+end
--- a/app/services/ci/create_pipeline_service.rb
+++ b/app/services/ci/create_pipeline_service.rb
 module Ci
  class CreatePipelineService < BaseService
-    def execute
+    attr_reader :pipeline
-      pipeline = project.pipelines.new(params)
-      pipeline.user = current_user
-      unless ref_names.include?(params[:ref])
+    def execute(ignore_skip_ci: false, save_on_errors: true, trigger_request: nil)
-        pipeline.errors.add(:base, 'Reference not found')
+      @pipeline = Ci::Pipeline.new(
-        return pipeline
+        project: project,
+        ref: ref,
+        sha: sha,
+        before_sha: before_sha,
+        tag: tag?,
+        trigger_requests: Array(trigger_request),
+        user: current_user
+      )
+      unless project.builds_enabled?
+        return error('Pipeline is disabled')
      end
-      if commit
+      unless trigger_request || can?(current_user, :create_pipeline, project)
-        pipeline.sha = commit.id
+        return error('Insufficient permissions to create a new pipeline')
-      else
-        pipeline.errors.add(:base, 'Commit not found')
-        return pipeline
      end
-      unless can?(current_user, :create_pipeline, project)
+      unless branch? || tag?
-        pipeline.errors.add(:base, 'Insufficient permissions to create a new pipeline')
+        return error('Reference not found')
-        return pipeline
+      end
+      unless commit
+        return error('Commit not found')
      end
      unless pipeline.config_processor
-        pipeline.errors.add(:base, pipeline.yaml_errors || 'Missing .gitlab-ci.yml file')
+        unless pipeline.ci_yaml_file
-        return pipeline
+          return error('Missing .gitlab-ci.yml file')
+        end
+        return error(pipeline.yaml_errors, save: save_on_errors)
      end
-      pipeline.save!
+      if !ignore_skip_ci && skip_ci?
+        pipeline.skip if save_on_errors
+        return pipeline
+      end
-      unless pipeline.create_builds(current_user)
+      unless pipeline.config_builds_attributes.present?
-        pipeline.errors.add(:base, 'No builds for this pipeline.')
+        return error('No builds for this pipeline.')
      end
      pipeline.save
+      pipeline.process!
      pipeline
    end
    private
-    def ref_names
+    def skip_ci?
-      @ref_names ||= project.repository.ref_names
+      pipeline.git_commit_message =~ /\[(ci skip|skip ci)\]/i if pipeline.git_commit_message
    end
    def commit
-      @commit ||= project.commit(params[:ref])
+      @commit ||= project.commit(origin_sha || origin_ref)
+    end
+    def sha
+      commit.try(:id)
+    end
+    def before_sha
+      params[:checkout_sha] || params[:before] || Gitlab::Git::BLANK_SHA
+    end
+    def origin_sha
+      params[:checkout_sha] || params[:after]
+    end
+    def origin_ref
+      params[:ref]
+    end
+    def branch?
+      project.repository.ref_exists?(Gitlab::Git::BRANCH_REF_PREFIX + ref)
+    end
+    def tag?
+      project.repository.ref_exists?(Gitlab::Git::TAG_REF_PREFIX + ref)
+    end
+    def ref
+      Gitlab::Git.ref_name(origin_ref)
+    end
+    def valid_sha?
+      origin_sha && origin_sha != Gitlab::Git::BLANK_SHA
+    end
+    def error(message, save: false)
+      pipeline.errors.add(:base, message)
+      pipeline.drop if save
+      pipeline
    end
  end
 end
--- a/app/services/ci/create_trigger_request_service.rb
+++ b/app/services/ci/create_trigger_request_service.rb
 module Ci
  class CreateTriggerRequestService
    def execute(project, trigger, ref, variables = nil)
-      commit = project.commit(ref)
+      trigger_request = trigger.trigger_requests.create(variables: variables)
-      return unless commit
-      # check if ref is tag
+      pipeline = Ci::CreatePipelineService.new(project, nil, ref: ref).
-      tag = project.repository.find_tag(ref).present?
+        execute(ignore_skip_ci: true, trigger_request: trigger_request)
+      if pipeline.persisted?
-      pipeline = project.pipelines.create(sha: commit.sha, ref: ref, tag: tag)
-      trigger_request = trigger.trigger_requests.create!(
-        variables: variables,
-        pipeline: pipeline,
-      )
-      if pipeline.create_builds(nil, trigger_request)
        trigger_request
      end
    end

--- a/app/services/ci/process_pipeline_service.rb
+++ b/app/services/ci/process_pipeline_service.rb
+module Ci
+  class ProcessPipelineService < BaseService
+    attr_reader :pipeline
+    def execute(pipeline)
+      @pipeline = pipeline
+      # This method will ensure that our pipeline does have all builds for all stages created
+      if created_builds.empty?
+        create_builds!
+      end
+      new_builds =
+        stage_indexes_of_created_builds.map do |index|
+          process_stage(index)
+        end
+      # Return a flag if a when builds got enqueued
+      new_builds.flatten.any?
+    end
+    private
+    def create_builds!
+      Ci::CreatePipelineBuildsService.new(project, current_user).execute(pipeline)
+    end
+    def process_stage(index)
+      current_status = status_for_prior_stages(index)
+      created_builds_in_stage(index).select do |build|
+        process_build(build, current_status)
+      end
+    end
+    def process_build(build, current_status)
+      return false unless Statuseable::COMPLETED_STATUSES.include?(current_status)
+      if valid_statuses_for_when(build.when).include?(current_status)
+        build.enqueue
+        true
+      else
+        build.skip
+        false
+      end
+    end
+    def valid_statuses_for_when(value)
+      case value
+      when 'on_success'
+        %w[success]
+      when 'on_failure'
+        %w[failed]
+      when 'always'
+        %w[success failed]
+      else
+        []
+      end
+    end
+    def status_for_prior_stages(index)
+      pipeline.builds.where('stage_idx < ?', index).latest.status || 'success'
+    end
+    def stage_indexes_of_created_builds
+      created_builds.order(:stage_idx).pluck('distinct stage_idx')
+    end
+    def created_builds_in_stage(index)
+      created_builds.where(stage_idx: index)
+    end
+    def created_builds
+      pipeline.builds.created
+    end
+  end
+end
--- a/app/services/create_commit_builds_service.rb
+++ b/app/services/create_commit_builds_service.rb
-class CreateCommitBuildsService
-  def execute(project, user, params)
-    return unless project.builds_enabled?
-    before_sha = params[:checkout_sha] || params[:before]
-    sha = params[:checkout_sha] || params[:after]
-    origin_ref = params[:ref]
-    ref = Gitlab::Git.ref_name(origin_ref)
-    tag = Gitlab::Git.tag_ref?(origin_ref)
-    # Skip branch removal
-    if sha == Gitlab::Git::BLANK_SHA
-      return false
-    end
-    @pipeline = Ci::Pipeline.new(
-      project: project,
-      sha: sha,
-      ref: ref,
-      before_sha: before_sha,
-      tag: tag,
-      user: user)
-    ##
-    # Skip creating pipeline if no gitlab-ci.yml is found
-    #
-    unless @pipeline.ci_yaml_file
-      return false
-    end
-    ##
-    # Skip creating builds for commits that have [ci skip]
-    # but save pipeline object
-    #
-    if @pipeline.skip_ci?
-      return save_pipeline!
-    end
-    ##
-    # Skip creating builds when CI config is invalid
-    # but save pipeline object
-    #
-    unless @pipeline.config_processor
-      return save_pipeline!
-    end
-    ##
-    # Skip creating pipeline object if there are no builds for it.
-    #
-    unless @pipeline.create_builds(user)
-      @pipeline.errors.add(:base, 'No builds created')
-      return false
-    end
-    save_pipeline!
-  end
-  private
-  ##
-  # Create a new pipeline and touch object to calculate status
-  #
-  def save_pipeline!
-    @pipeline.save!
-    @pipeline.touch
-    @pipeline
-  end
-end
--- a/app/services/delete_user_service.rb
+++ b/app/services/delete_user_service.rb
@@ -18,7 +18,7 @@ class DeleteUserService
    user.personal_projects.each do |project|
      # Skip repository removal because we remove directory with namespace
      # that contain all this repositories
-      ::Projects::DestroyService.new(project, current_user, skip_repo: true).pending_delete!
+      ::Projects::DestroyService.new(project, current_user, skip_repo: true).async_execute
    end
    user.destroy

--- a/app/services/destroy_group_service.rb
+++ b/app/services/destroy_group_service.rb
@@ -9,7 +9,7 @@ class DestroyGroupService
    group.projects.each do |project|
      # Skip repository removal because we remove directory with namespace
      # that contain all this repositories
-      ::Projects::DestroyService.new(project, current_user, skip_repo: true).pending_delete!
+      ::Projects::DestroyService.new(project, current_user, skip_repo: true).async_execute
    end
    group.destroy

--- a/app/services/git_push_service.rb
+++ b/app/services/git_push_service.rb
@@ -69,7 +69,7 @@ class GitPushService < BaseService
    SystemHooksService.new.execute_hooks(build_push_data_system_hook.dup, :push_hooks)
    @project.execute_hooks(build_push_data.dup, :push_hooks)
    @project.execute_services(build_push_data.dup, :push_hooks)
-    CreateCommitBuildsService.new.execute(@project, current_user, build_push_data)
+    Ci::CreatePipelineService.new(project, current_user, build_push_data).execute
    ProjectCacheWorker.perform_async(@project.id)
  end

--- a/app/services/git_tag_push_service.rb
+++ b/app/services/git_tag_push_service.rb
@@ -11,7 +11,7 @@ class GitTagPushService < BaseService
    SystemHooksService.new.execute_hooks(build_system_push_data.dup, :tag_push_hooks)
    project.execute_hooks(@push_data.dup, :tag_push_hooks)
    project.execute_services(@push_data.dup, :tag_push_hooks)
-    CreateCommitBuildsService.new.execute(project, current_user, @push_data)
+    Ci::CreatePipelineService.new(project, current_user, @push_data).execute
    ProjectCacheWorker.perform_async(project.id)
    true

--- a/app/services/members/destroy_service.rb
+++ b/app/services/members/destroy_service.rb
@@ -2,8 +2,9 @@ module Members
  class DestroyService < BaseService
    attr_accessor :member, :current_user
-    def initialize(member, user)
+    def initialize(member, current_user)
-      @member, @current_user = member, user
+      @member = member
+      @current_user = current_user
    end
    def execute

--- a/app/services/merge_requests/get_urls_service.rb
+++ b/app/services/merge_requests/get_urls_service.rb
+module MergeRequests
+  class GetUrlsService < BaseService
+    attr_reader :project
+    def initialize(project)
+      @project = project
+    end
+    def execute(changes)
+      branches = get_branches(changes)
+      merge_requests_map = opened_merge_requests_from_source_branches(branches)
+      branches.map do |branch|
+        existing_merge_request = merge_requests_map[branch]
+        if existing_merge_request
+          url_for_existing_merge_request(existing_merge_request)
+        else
+          url_for_new_merge_request(branch)
+        end
+      end
+    end
+    private
+    def opened_merge_requests_from_source_branches(branches)
+      merge_requests = MergeRequest.from_project(project).opened.from_source_branches(branches)
+      merge_requests.inject({}) do |hash, mr|
+        hash[mr.source_branch] = mr
+        hash
+      end
+    end
+    def get_branches(changes)
+      changes_list = Gitlab::ChangesList.new(changes)
+      changes_list.map do |change|
+        next unless Gitlab::Git.branch_ref?(change[:ref])
+        Gitlab::Git.branch_name(change[:ref])
+      end.compact
+    end
+    def url_for_new_merge_request(branch_name)
+      merge_request_params = { source_branch: branch_name }
+      url = Gitlab::Routing.url_helpers.new_namespace_project_merge_request_url(project.namespace, project, merge_request: merge_request_params)
+      { branch_name: branch_name, url: url, new_merge_request: true }
+    end
+    def url_for_existing_merge_request(merge_request)
+      target_project = merge_request.target_project
+      url = Gitlab::Routing.url_helpers.namespace_project_merge_request_url(target_project.namespace, target_project, merge_request)
+      { branch_name: merge_request.source_branch, url: url, new_merge_request: false }
+    end
+  end
+end
--- a/app/services/projects/destroy_service.rb
+++ b/app/services/projects/destroy_service.rb
@@ -6,8 +6,12 @@ module Projects
    DELETED_FLAG = '+deleted'
-    def pending_delete!
+    def async_execute
-      project.schedule_delete!(current_user.id, params)
+      project.transaction do
+        project.update_attribute(:pending_delete, true)
+        job_id = ProjectDestroyWorker.perform_async(project.id, current_user.id, params)
+        Rails.logger.info("User #{current_user.id} scheduled destruction of project #{project.path_with_namespace} with job ID #{job_id}")
+      end
    end
    def execute

--- a/app/services/projects/enable_deploy_key_service.rb
+++ b/app/services/projects/enable_deploy_key_service.rb
+module Projects
+  class EnableDeployKeyService < BaseService
+    def execute
+      key = accessible_keys.find_by(id: params[:key_id] || params[:id])
+      return unless key
+      project.deploy_keys << key
+      key
+    end
+    private
+    def accessible_keys
+      current_user.accessible_deploy_keys
+    end
+  end
+end
--- a/app/views/admin/application_settings/_form.html.haml
+++ b/app/views/admin/application_settings/_form.html.haml
@@ -366,7 +366,9 @@
      .col-sm-10
        = f.select :repository_storage, repository_storage_options_for_select, {}, class: 'form-control'
        .help-block
-          You can manage the repository storage paths in your gitlab.yml configuration file
+          Manage repository storage paths. Learn more in the
+          = succeed "." do
+            = link_to "repository storages documentation", help_page_path("administration/repository_storages")
  %fieldset
    %legend Repository Checks

--- a/app/views/admin/dashboard/index.html.haml
+++ b/app/views/admin/dashboard/index.html.haml
@@ -112,7 +112,7 @@
          %h4 Projects
          .data
            = link_to admin_namespaces_projects_path do
-              %h1= number_with_delimiter(Project.count)
+              %h1= number_with_delimiter(Project.cached_count)
            %hr
            = link_to('New Project', new_project_path, class: "btn btn-new")
      .col-sm-4

--- a/app/views/admin/labels/_form.html.haml
+++ b/app/views/admin/labels/_form.html.haml
@@ -28,6 +28,3 @@
  .form-actions
    = f.submit 'Save', class: 'btn btn-save js-save-button'
    = link_to "Cancel", admin_labels_path, class: 'btn btn-cancel'
-:javascript
-  new Labels();
--- a/app/views/import/github/status.html.haml
+++ b/app/views/import/github/status.html.haml
@@ -4,10 +4,6 @@
  %i.fa.fa-github
  Import projects from GitHub
-%p
-  %i.fa.fa-warning
-  To import GitHub pull requests, any pull request source branches that had been deleted are temporarily restored on GitHub. To prevent any connected CI services from being overloaded with dozens of irrelevant branches being created and deleted again, GitHub webhooks are temporarily disabled during the import process, but only if you have admin access to the GitHub repository.
 %p.light
  Select projects you want to import.
 %hr

--- a/app/views/layouts/project.html.haml
+++ b/app/views/layouts/project.html.haml
@@ -6,13 +6,13 @@
 - content_for :scripts_body_top do
  - project = @target_project || @project
  - if @project_wiki && @page
-    - markdown_preview_path = namespace_project_wiki_markdown_preview_path(project.namespace, project, @page.slug)
+    - preview_markdown_path = namespace_project_wiki_preview_markdown_path(project.namespace, project, @page.slug)
  - else
-    - markdown_preview_path = markdown_preview_namespace_project_path(project.namespace, project)
+    - preview_markdown_path = preview_markdown_namespace_project_path(project.namespace, project)
  - if current_user
    :javascript
      window.project_uploads_path = "#{namespace_project_uploads_path project.namespace,project}";
-      window.markdown_preview_path = "#{markdown_preview_path}";
+      window.preview_markdown_path = "#{preview_markdown_path}";
 - content_for :scripts_body do
  = render "layouts/init_auto_complete" if current_user

--- a/app/views/projects/_home_panel.html.haml
+++ b/app/views/projects/_home_panel.html.haml
@@ -24,6 +24,3 @@
      .project-clone-holder
        = render "shared/clone_panel"
-:javascript
-  new Star();
--- a/app/views/projects/badges/badge.svg.erb
+++ b/app/views/projects/badges/badge.svg.erb
+<svg xmlns="http://www.w3.org/2000/svg" width="<%= badge.width %>" height="20">
+  <linearGradient id="b" x2="0" y2="100%">
+    <stop offset="0" stop-color="#bbb" stop-opacity=".1"/>
+    <stop offset="1" stop-opacity=".1"/>
+  </linearGradient>
+  <mask id="a">
+    <rect width="<%= badge.width %>" height="20" rx="3" fill="#fff"/>
+  </mask>
+  <g mask="url(#a)">
+    <path fill="<%= badge.key_color %>"
+          d="M0 0 h<%= badge.key_width %> v20 H0 z"/>
+    <path fill="<%= badge.value_color %>"
+          d="M<%= badge.key_width %> 0 h<%= badge.value_width %> v20 H<%= badge.key_width %> z"/>
+    <path fill="url(#b)"
+          d="M0 0 h<%= badge.width %> v20 H0 z"/>
+  </g>
+  <g fill="#fff" text-anchor="middle">
+    <g font-family="DejaVu Sans,Verdana,Geneva,sans-serif" font-size="11">
+      <text x="<%= badge.key_text_anchor %>" y="15" fill="#010101" fill-opacity=".3">
+        <%= badge.key_text %>
+      </text>
+      <text x="<%= badge.key_text_anchor %>" y="14">
+        <%= badge.key_text %>
+      </text>
+      <text x="<%= badge.value_text_anchor %>" y="15" fill="#010101" fill-opacity=".3">
+        <%= badge.value_text %>
+      </text>
+      <text x="<%= badge.value_text_anchor %>" y="14">
+        <%= badge.value_text %>
+      </text>
+    </g>
+  </g>
+</svg>
--- a/app/views/projects/ci/pipelines/_pipeline.html.haml
+++ b/app/views/projects/ci/pipelines/_pipeline.html.haml
@@ -33,7 +33,7 @@
          Cant find HEAD commit for this branch
-    - stages_status = pipeline.statuses.latest.stages_status
+    - stages_status = pipeline.statuses.relevant.latest.stages_status
    - stages.each do |stage|
      %td.stage-cell
        - status = stages_status[stage]

--- a/app/views/projects/commit/_pipeline.html.haml
+++ b/app/views/projects/commit/_pipeline.html.haml
@@ -46,5 +46,5 @@
        - if pipeline.project.build_coverage_enabled?
          %th Coverage
        %th
-    - pipeline.statuses.stages.each do |stage|
+    - pipeline.statuses.relevant.stages.each do |stage|
-      = render 'projects/commit/ci_stage', stage: stage, statuses: pipeline.statuses.where(stage: stage)
+      = render 'projects/commit/ci_stage', stage: stage, statuses: pipeline.statuses.relevant.where(stage: stage)
--- a/app/views/projects/deployments/_actions.haml
+++ b/app/views/projects/deployments/_actions.haml
@@ -2,9 +2,9 @@
  .pull-right
    - actions = deployment.manual_actions
    - if actions.present?
-      .btn-group.inline
+      .inline
-        .btn-group
+        .dropdown
-          %a.dropdown-toggle.btn.btn-default{type: 'button', 'data-toggle' => 'dropdown'}
+          %a.dropdown-new.btn.btn-default{type: 'button', 'data-toggle' => 'dropdown'}
            = icon("play")
            %b.caret
          %ul.dropdown-menu.dropdown-menu-align-right

--- a/app/views/projects/deployments/_commit.html.haml
+++ b/app/views/projects/deployments/_commit.html.haml
 %div.branch-commit
  - if deployment.ref
-    = link_to deployment.ref, namespace_project_commits_path(@project.namespace, @project, deployment.ref), class: "monospace"
+    .icon-container
-    &middot;
+      = deployment.tag? ? icon('tag') : icon('code-fork')
+    = link_to deployment.ref, namespace_project_commits_path(@project.namespace, @project, deployment.ref), class: "monospace branch-name"
+  .icon-container
+    = custom_icon("icon_commit")
  = link_to deployment.short_sha, namespace_project_commit_path(@project.namespace, @project, deployment.sha), class: "commit-id monospace"
  %p.commit-title
    %span
      - if commit_title = deployment.commit_title
+        = author_avatar(deployment.commit, size: 20)
        = link_to_gfm commit_title, namespace_project_commit_path(@project.namespace, @project, deployment.sha), class: "commit-row-message"
      - else
        Cant find HEAD commit for this branch
--- a/app/views/projects/deployments/_deployment.html.haml
+++ b/app/views/projects/deployments/_deployment.html.haml
@@ -8,6 +8,7 @@
  %td
    - if deployment.deployable
      = link_to [@project.namespace.becomes(Namespace), @project, deployment.deployable] do
+        = user_avatar(user: deployment.user, size: 20)
        = "#{deployment.deployable.name} (##{deployment.deployable.id})"
  %td

--- a/app/views/projects/diffs/_file.html.haml
+++ b/app/views/projects/diffs/_file.html.haml
-.diff-file.file-holder{id: "diff-#{index}", data: diff_file_html_data(project, diff_file)}
+.diff-file.file-holder{id: "diff-#{index}", data: diff_file_html_data(project, diff_file.file_path, diff_commit.id)}
  .file-title{id: "file-path-#{hexdigest(diff_file.file_path)}"}
    = render "projects/diffs/file_header", diff_file: diff_file, blob: blob, diff_commit: diff_commit, project: project, url: "#diff-#{index}"

--- a/app/views/projects/environments/_environment.html.haml
+++ b/app/views/projects/environments/_environment.html.haml
@@ -2,9 +2,13 @@
 %tr.environment
  %td
-    %strong
    = link_to environment.name, namespace_project_environment_path(@project.namespace, @project, environment)
+  %td
+    - if last_deployment
+      = user_avatar(user: last_deployment.user, size: 20)
+      %strong ##{last_deployment.id}
  %td
    - if last_deployment
      = render 'projects/deployments/commit', deployment: last_deployment

--- a/app/views/projects/environments/index.html.haml
+++ b/app/views/projects/environments/index.html.haml
@@ -23,10 +23,11 @@
          New environment
  - else
    .table-holder
-      %table.table.environments
+      %table.table.builds.environments
        %tbody
          %th Environment
-          %th Last deployment
+          %th Last Deployment
-          %th Date
+          %th Commit
+          %th
          %th
        = render @environments
--- a/app/views/projects/environments/show.html.haml
+++ b/app/views/projects/environments/show.html.haml
@@ -23,13 +23,13 @@
      = link_to "Read more", help_page_path("ci/environments"), class: "btn btn-success"
  - else
    .table-holder
-      %table.table.environments
+      %table.table.builds.environments
        %thead
          %tr
            %th ID
            %th Commit
            %th Build
-            %th Date
+            %th
            %th
        = render @deployments

--- a/app/views/projects/new.html.haml
+++ b/app/views/projects/new.html.haml
@@ -46,28 +46,18 @@
                %div
                  - if github_import_enabled?
                    = link_to new_import_github_path, class: 'btn import_github' do
-                      = icon 'github', text: 'GitHub'
+                      = icon('github', text: 'GitHub')
                %div
                  - if bitbucket_import_enabled?
-                    - if bitbucket_import_configured?
+                    = link_to status_import_bitbucket_path, class: "btn import_bitbucket #{'how_to_import_link' unless bitbucket_import_configured?}", "data-no-turbolink" => "true" do
-                      = link_to status_import_bitbucket_path, class: 'btn import_bitbucket', "data-no-turbolink" => "true" do
+                      = icon('bitbucket', text: 'Bitbucket')
-                        %i.fa.fa-bitbucket
+                    - unless bitbucket_import_configured?
-                        Bitbucket
-                    - else
-                      = link_to status_import_bitbucket_path, class: 'how_to_import_link btn import_bitbucket', "data-no-turbolink" => "true" do
-                        %i.fa.fa-bitbucket
-                        Bitbucket
                      = render 'bitbucket_import_modal'
                %div
                  - if gitlab_import_enabled?
-                    - if gitlab_import_configured?
+                    = link_to status_import_gitlab_path, class: "btn import_gitlab #{'how_to_import_link' unless bitbucket_import_configured?}" do
-                      = link_to status_import_gitlab_path, class: 'btn import_gitlab' do
+                      = icon('gitlab', text: 'GitLab.com')
-                        %i.fa.fa-heart
+                    - unless gitlab_import_configured?
-                        GitLab.com
-                    - else
-                      = link_to status_import_gitlab_path, class: 'how_to_import_link btn import_gitlab' do
-                        %i.fa.fa-heart
-                        GitLab.com
                      = render 'gitlab_import_modal'
                %div
                  - if gitorious_import_enabled?
@@ -77,23 +67,19 @@
                %div
                  - if google_code_import_enabled?
                    = link_to new_import_google_code_path, class: 'btn import_google_code' do
-                      %i.fa.fa-google
+                      = icon('google', text: 'Google Code')
-                      Google Code
                %div
                  - if fogbugz_import_enabled?
                    = link_to new_import_fogbugz_path, class: 'btn import_fogbugz' do
-                      %i.fa.fa-bug
+                      = icon('bug', text: 'Fogbugz')
-                      Fogbugz
                %div
                  - if git_import_enabled?
                    = link_to "#", class: 'btn js-toggle-button import_git' do
-                      %i.fa.fa-git
+                      = icon('git', text: 'Repo by URL')
-                      %span Repo by URL
                %div{ class: 'import_gitlab_project' }
                  - if gitlab_project_import_enabled?
                    = link_to new_import_gitlab_project_path, class: 'btn btn_import_gitlab_project project-submit' do
-                      %i.fa.fa-gitlab
+                      = icon('gitlab', text: 'GitLab export')
-                      %span GitLab export
            .js-toggle-content.hide
              = render "shared/import_form", f: f

--- a/app/views/projects/pipelines/new.html.haml
+++ b/app/views/projects/pipelines/new.html.haml
@@ -9,7 +9,7 @@
  .form-group
    = f.label :ref, 'Create for', class: 'control-label'
    .col-sm-10
-      = f.text_field :ref, required: true, tabindex: 2, class: 'form-control'
+      = f.text_field :ref, required: true, tabindex: 2, class: 'form-control js-branch-name ui-autocomplete-input', autocomplete: :false, id: :ref
      .help-block Existing branch name, tag
  .form-actions
    = f.submit 'Create pipeline', class: 'btn btn-create', tabindex: 3

--- a/app/views/projects/tree/_tree_row.html.haml
+++ b/app/views/projects/tree/_tree_row.html.haml
+- if tree_row.type == :tree
+  = render partial: 'projects/tree/tree_item', object: tree_row, as: 'tree_item', locals: { type: 'folder' }
+- elsif tree_row.type == :blob
+  = render partial: 'projects/tree/blob_item', object: tree_row, as: 'blob_item', locals: { type: 'file' }
+- elsif tree_row.type == :commit
+  = render partial: 'projects/tree/submodule_item', object: tree_row, as: 'submodule_item'
--- a/app/views/shared/_labels_row.html.haml
+++ b/app/views/shared/_labels_row.html.haml
 - labels.each do |label|
  %span.label-row.btn-group{ role: "group", aria: { label: label.name }, style: "color: #{text_color_for_bg(label.color)}" }
-    = link_to label.name, label_filter_path(@project, label, type: controller.controller_name),
+    = link_to_label(label, css_class: 'btn btn-transparent')
-      class: "btn btn-transparent has-tooltip",
-      style: "background-color: #{label.color};",
-      title: escape_once(label.description),
-      data: { container: "body" }
    %button.btn.btn-transparent.label-remove.js-label-filter-remove{ type: "button", style: "background-color: #{label.color};", data: { label: label.title } }
      = icon("times")
--- a/app/views/shared/members/_member.html.haml
+++ b/app/views/shared/members/_member.html.haml
- show_roles = local_assigns.fetch(:show_roles, default_show_roles(member))
+- show_roles = local_assigns.fetch(:show_roles, true)
 - show_controls = local_assigns.fetch(:show_controls, true)
 - user = member.user

--- a/app/views/shared/projects/_project.html.haml
+++ b/app/views/shared/projects/_project.html.haml
@@ -24,7 +24,7 @@
          = icon('star')
          = project.star_count
      %span.visibility-icon.has-tooltip{data: { container: 'body', placement: 'left' }, title: visibility_icon_description(project)}
-        = visibility_level_icon(project.visibility_level, fw: false)
+        = visibility_level_icon(project.visibility_level, fw: true)
    .title
      = link_to project_path(project), class: dom_class(project) do

--- a/config/application.rb
+++ b/config/application.rb
@@ -107,7 +107,8 @@ module Gitlab
      end
    end
-    redis_config_hash = Gitlab::Redis.redis_store_options
+    # Use Redis caching across all environments
+    redis_config_hash = Gitlab::Redis.params
    redis_config_hash[:namespace] = Gitlab::Redis::CACHE_NAMESPACE
    redis_config_hash[:expires_in] = 2.weeks # Cache should not grow forever
    config.cache_store = :redis_store, redis_config_hash

--- a/config/initializers/5_backend.rb
+++ b/config/initializers/5_backend.rb
-# GIT over HTTP
-require_dependency Rails.root.join('lib/gitlab/backend/grack_auth')
 # GIT over SSH
 require_dependency Rails.root.join('lib/gitlab/backend/shell')

--- a/config/initializers/devise.rb
+++ b/config/initializers/devise.rb
@@ -100,6 +100,9 @@ Devise.setup do |config|
  # secure: true in order to force SSL only cookies.
  # config.cookie_options = {}
+  # Send a notification email when the user's password is changed
+  config.send_password_change_notification = true
  # ==> Configuration for :validatable
  # Range for password length. Default is 6..128.
  config.password_length = 8..128

--- a/config/initializers/metrics.rb
+++ b/config/initializers/metrics.rb
@@ -148,6 +148,9 @@ if Gitlab::Metrics.enabled?
    config.instrument_methods(Gitlab::Highlight)
    config.instrument_instance_methods(Gitlab::Highlight)
+    # This is a Rails scope so we have to instrument it manually.
+    config.instrument_method(Project, :visible_to_user)
  end
  GC::Profiler.enable

--- a/config/initializers/mime_types.rb
+++ b/config/initializers/mime_types.rb
@@ -12,3 +12,10 @@ Mime::Type.register_alias "text/html",  :md
 Mime::Type.register "video/mp4",  :mp4, [], [:m4v, :mov]
 Mime::Type.register "video/webm", :webm
 Mime::Type.register "video/ogg",  :ogv
+middlewares = Gitlab::Application.config.middleware
+middlewares.swap(ActionDispatch::ParamsParser, ActionDispatch::ParamsParser, {
+  Mime::Type.lookup('application/vnd.git-lfs+json') => lambda do |body|
+    ActiveSupport::JSON.decode(body)
+  end
+})
--- a/config/initializers/secret_token.rb
+++ b/config/initializers/secret_token.rb
@@ -2,49 +2,86 @@
 require 'securerandom'
-# Your secret key for verifying the integrity of signed cookies.
+# Transition material in .secret to the secret_key_base key in config/secrets.yml.
-# If you change this key, all old signed cookies will become invalid!
+# Historically, ENV['SECRET_KEY_BASE'] takes precedence over .secret, so we maintain that
-# Make sure the secret is at least 30 characters and all random,
+# behavior.
-# no regular words or you'll be exposed to dictionary attacks.
+#
+# It also used to be the case that the key material in ENV['SECRET_KEY_BASE'] or .secret
-def find_secure_token
+# was used to encrypt OTP (two-factor authentication) data so if present, we copy that key
-  token_file = Rails.root.join('.secret')
+# material into config/secrets.yml under otp_key_base.
-  if ENV.key?('SECRET_KEY_BASE')
+#
-    ENV['SECRET_KEY_BASE']
+# Finally, if we have successfully migrated all secrets to config/secrets.yml, delete the
-  elsif File.exist? token_file
+# .secret file to avoid confusion.
-    # Use the existing token.
+#
-    File.read(token_file).chomp
+def create_tokens
-  else
+  secret_file = Rails.root.join('.secret')
-    # Generate a new token of 64 random hexadecimal characters and store it in token_file.
+  file_secret_key = File.read(secret_file).chomp if File.exist?(secret_file)
-    token = SecureRandom.hex(64)
+  env_secret_key = ENV['SECRET_KEY_BASE']
-    File.write(token_file, token)
-    token
+  # Ensure environment variable always overrides secrets.yml.
+  Rails.application.secrets.secret_key_base = env_secret_key if env_secret_key.present?
+  defaults = {
+    secret_key_base: file_secret_key || generate_new_secure_token,
+    otp_key_base: env_secret_key || file_secret_key || generate_new_secure_token,
+    db_key_base: generate_new_secure_token
+  }
+  missing_secrets = set_missing_keys(defaults)
+  write_secrets_yml(missing_secrets) unless missing_secrets.empty?
+  begin
+    File.delete(secret_file) if file_secret_key
+  rescue => e
+    warn "Error deleting useless .secret file: #{e}"
  end
 end
-Rails.application.config.secret_token = find_secure_token
-Rails.application.config.secret_key_base = find_secure_token
-# CI
 def generate_new_secure_token
  SecureRandom.hex(64)
 end
-if Rails.application.secrets.db_key_base.blank?
+def warn_missing_secret(secret)
-  warn "Missing `db_key_base` for '#{Rails.env}' environment. The secrets will be generated and stored in `config/secrets.yml`"
+  warn "Missing Rails.application.secrets.#{secret} for #{Rails.env} environment. The secret will be generated and stored in config/secrets.yml."
+end
-  all_secrets = YAML.load_file('config/secrets.yml') if File.exist?('config/secrets.yml')
+def set_missing_keys(defaults)
-  all_secrets ||= {}
+  defaults.stringify_keys.each_with_object({}) do |(key, default), missing|
+    if Rails.application.secrets[key].blank?
+      warn_missing_secret(key)
-  # generate secrets
+      missing[key] = Rails.application.secrets[key] = default
-  env_secrets = all_secrets[Rails.env.to_s] || {}
+    end
-  env_secrets['db_key_base'] ||= generate_new_secure_token
+  end
-  all_secrets[Rails.env.to_s] = env_secrets
+end
+def write_secrets_yml(missing_secrets)
+  secrets_yml = Rails.root.join('config/secrets.yml')
+  rails_env = Rails.env.to_s
+  secrets = YAML.load_file(secrets_yml) if File.exist?(secrets_yml)
+  secrets ||= {}
+  secrets[rails_env] ||= {}
+  secrets[rails_env].merge!(missing_secrets) do |key, old, new|
+    # Previously, it was possible this was set to the literal contents of an Erb
+    # expression that evaluated to an empty value. We don't want to support that
+    # specifically, just ensure we don't break things further.
+    #
+    if old.present?
+      warn <<EOM
+Rails.application.secrets.#{key} was blank, but the literal value in config/secrets.yml was:
+  #{old}
+This probably isn't the expected value for this secret. To keep using a literal Erb string in config/secrets.yml, replace `<%` with `<%%`.
+EOM
-  # save secrets
+      exit 1 # rubocop:disable Rails/Exit
-  File.open('config/secrets.yml', 'w', 0600) do |file|
-    file.write(YAML.dump(all_secrets))
    end
-  Rails.application.secrets.db_key_base = env_secrets['db_key_base']
+    new
+  end
+  File.write(secrets_yml, YAML.dump(secrets), mode: 'w', perm: 0600)
 end
+create_tokens
--- a/config/initializers/session_store.rb
+++ b/config/initializers/session_store.rb
@@ -13,7 +13,7 @@ end
 if Rails.env.test?
  Gitlab::Application.config.session_store :cookie_store, key: "_gitlab_session"
 else
-  redis_config = Gitlab::Redis.redis_store_options
+  redis_config = Gitlab::Redis.params
  redis_config[:namespace] = Gitlab::Redis::SESSION_NAMESPACE
  Gitlab::Application.config.session_store(

--- a/config/initializers/sidekiq.rb
+++ b/config/initializers/sidekiq.rb
+# Custom Redis configuration
+redis_config_hash = Gitlab::Redis.params
+redis_config_hash[:namespace] = Gitlab::Redis::SIDEKIQ_NAMESPACE
 Sidekiq.configure_server do |config|
-  config.redis = {
+  config.redis = redis_config_hash
-    url: Gitlab::Redis.url,
-    namespace: Gitlab::Redis::SIDEKIQ_NAMESPACE
-  }
  config.server_middleware do |chain|
    chain.add Gitlab::SidekiqMiddleware::ArgumentsLogger if ENV['SIDEKIQ_LOG_ARGUMENTS']
@@ -39,8 +40,5 @@ Sidekiq.configure_server do |config|
 end
 Sidekiq.configure_client do |config|
-  config.redis = {
+  config.redis = redis_config_hash
-    url: Gitlab::Redis.url,
-    namespace: Gitlab::Redis::SIDEKIQ_NAMESPACE
-  }
 end
--- a/config/mail_room.yml
+++ b/config/mail_room.yml
+# If you change this file in a Merge Request, please also create
+# a Merge Request on https://gitlab.com/gitlab-org/omnibus-gitlab/merge_requests
+#
 :mailboxes:
-<%
+  <%
-require "yaml"
+    require_relative "lib/gitlab/mail_room" unless defined?(Gitlab::MailRoom)
-require "json"
+    config = Gitlab::MailRoom.config
-require_relative "lib/gitlab/redis" unless defined?(Gitlab::Redis)
-rails_env = ENV["RAILS_ENV"] || ENV["RACK_ENV"] || "development"
+    if Gitlab::MailRoom.enabled?
-config_file = ENV["MAIL_ROOM_GITLAB_CONFIG_FILE"] || "config/gitlab.yml"
-if File.exists?(config_file)
-  all_config = YAML.load_file(config_file)[rails_env]
-  config = all_config["incoming_email"] || {}
-  config['enabled']    = false    if config['enabled'].nil?
-  config['port']       = 143      if config['port'].nil?
-  config['ssl']        = false    if config['ssl'].nil?
-  config['start_tls']  = false    if config['start_tls'].nil?
-  config['mailbox']    = "inbox"  if config['mailbox'].nil?
-  if config['enabled'] && config['address']
-    redis_url = Gitlab::Redis.new(rails_env).url
  %>
    -
-      :host: <%= config['host'].to_json %>
+      :host: <%= config[:host].to_json %>
-      :port: <%= config['port'].to_json %>
+      :port: <%= config[:port].to_json %>
-      :ssl: <%= config['ssl'].to_json %>
+      :ssl: <%= config[:ssl].to_json %>
-      :start_tls: <%= config['start_tls'].to_json %>
+      :start_tls: <%= config[:start_tls].to_json %>
-      :email: <%= config['user'].to_json %>
+      :email: <%= config[:user].to_json %>
-      :password: <%= config['password'].to_json %>
+      :password: <%= config[:password].to_json %>
+      :idle_timeout: 60
-      :name: <%= config['mailbox'].to_json %>
+      :name: <%= config[:mailbox].to_json %>
      :delete_after_delivery: true
      :delivery_method: sidekiq
      :delivery_options:
-        :redis_url: <%= redis_url.to_json %>
+        :redis_url: <%= config[:redis_url].to_json %>
-        :namespace: resque:gitlab
+        :namespace: <%= Gitlab::Redis::SIDEKIQ_NAMESPACE %>
        :queue: incoming_email
        :worker: EmailReceiverWorker
      :arbitration_method: redis
      :arbitration_options:
-        :redis_url: <%= redis_url.to_json %>
+        :redis_url: <%= config[:redis_url].to_json %>
-        :namespace: mail_room:gitlab
+        :namespace: <%= Gitlab::Redis::MAILROOM_NAMESPACE %>
  <% end %>
-<% end %>
--- a/config/resque.yml.example
+++ b/config/resque.yml.example
 # If you change this file in a Merge Request, please also create
 # a Merge Request on https://gitlab.com/gitlab-org/omnibus-gitlab/merge_requests
 #
-development: redis://localhost:6379
+development:
-test: redis://localhost:6379
+  url: redis://localhost:6379
-production: unix:/var/run/redis/redis.sock
+  # sentinels:
+  #   -
+  #     host: localhost
+  #     port: 26380 # point to sentinel, not to redis port
+  #   -
+  #     host: slave2
+  #     port: 26381 # point to sentinel, not to redis port
+test:
+  url: redis://localhost:6379
+production:
+  # Redis (single instance)
+  url: unix:/var/run/redis/redis.sock
+  ##
+  # Redis + Sentinel (for HA)
+  #
+  # Please read instructions carefully before using it as you may lose data:
+  # http://redis.io/topics/sentinel
+  #
+  # You must specify a list of a few sentinels that will handle client connection
+  # please read here for more information: https://docs.gitlab.com/ce/administration/high_availability/redis.html
+  ##
+  # url: redis://master:6379
+  # sentinels:
+  #   -
+  #     host: slave1
+  #     port: 26379 # point to sentinel, not to redis port
+  #   -
+  #     host: slave2
+  #     port: 26379 # point to sentinel, not to redis port
--- a/config/routes.rb
+++ b/config/routes.rb
@@ -84,9 +84,6 @@ Rails.application.routes.draw do
  # Health check
  get 'health_check(/:checks)' => 'health_check#index', as: :health_check
-  # Enable Grack support (for LFS only)
-  mount Grack::AuthSpawner, at: '/', constraints: lambda { |request| /[-\/\w\.]+\.git\/(info\/lfs|gitlab-lfs)/.match(request.path_info) }, via: [:get, :post, :put]
  # Help
  get 'help'           => 'help#index'
  get 'help/shortcuts' => 'help#shortcuts'
@@ -471,7 +468,7 @@ Rails.application.routes.draw do
        post :unarchive
        post :housekeeping
        post :toggle_star
-        post :markdown_preview
+        post :preview_markdown
        post :export
        post :remove_export
        post :generate_new_export
@@ -482,11 +479,26 @@ Rails.application.routes.draw do
      end
      scope module: :projects do
-        # Git HTTP clients ('git clone' etc.)
        scope constraints: { id: /.+\.git/, format: nil } do
+          # Git HTTP clients ('git clone' etc.)
          get '/info/refs', to: 'git_http#info_refs'
          post '/git-upload-pack', to: 'git_http#git_upload_pack'
          post '/git-receive-pack', to: 'git_http#git_receive_pack'
+          # Git LFS API (metadata)
+          post '/info/lfs/objects/batch', to: 'lfs_api#batch'
+          post '/info/lfs/objects', to: 'lfs_api#deprecated'
+          get '/info/lfs/objects/*oid', to: 'lfs_api#deprecated'
+          # GitLab LFS object storage
+          scope constraints: { oid: /[a-f0-9]{64}/ } do
+            get '/gitlab-lfs/objects/*oid', to: 'lfs_storage#download'
+            scope constraints: { size: /[0-9]+/ } do
+              put '/gitlab-lfs/objects/*oid/*size/authorize', to: 'lfs_storage#upload_authorize'
+              put '/gitlab-lfs/objects/*oid/*size', to: 'lfs_storage#upload_finalize'
+            end
+          end
        end
        # Allow /info/refs, /info/refs?service=git-upload-pack, and
@@ -660,7 +672,7 @@ Rails.application.routes.draw do
          get '/wikis/*id', to: 'wikis#show', as: 'wiki', constraints: WIKI_SLUG_ID
          delete '/wikis/*id', to: 'wikis#destroy', constraints: WIKI_SLUG_ID
          put '/wikis/*id', to: 'wikis#update', constraints: WIKI_SLUG_ID
-          post '/wikis/*id/markdown_preview', to: 'wikis#markdown_preview', constraints: WIKI_SLUG_ID, as: 'wiki_markdown_preview'
+          post '/wikis/*id/preview_markdown', to: 'wikis#preview_markdown', constraints: WIKI_SLUG_ID, as: 'wiki_preview_markdown'
        end
        resource :repository, only: [:create] do

--- a/db/migrate/20160716115711_add_queued_at_to_ci_builds.rb
+++ b/db/migrate/20160716115711_add_queued_at_to_ci_builds.rb
+class AddQueuedAtToCiBuilds < ActiveRecord::Migration
+  include Gitlab::Database::MigrationHelpers
+  DOWNTIME = false
+  def change
+    add_column :ci_builds, :queued_at, :timestamp
+  end
+end
--- a/db/migrate/20160810102349_remove_ci_runner_trigram_indexes.rb
+++ b/db/migrate/20160810102349_remove_ci_runner_trigram_indexes.rb
--- a/db/migrate/20160810142633_remove_redundant_indexes.rb
+++ b/db/migrate/20160810142633_remove_redundant_indexes.rb
--- a/db/schema.rb
+++ b/db/schema.rb
--- a/doc/administration/container_registry.md
+++ b/doc/administration/container_registry.md
--- a/doc/administration/high_availability/redis.md
+++ b/doc/administration/high_availability/redis.md
--- a/doc/api/README.md
+++ b/doc/api/README.md
--- a/doc/api/access_requests.md
+++ b/doc/api/access_requests.md
--- a/doc/api/award_emoji.md
+++ b/doc/api/award_emoji.md
--- a/doc/api/branches.md
+++ b/doc/api/branches.md
--- a/doc/api/build_triggers.md
+++ b/doc/api/build_triggers.md
--- a/doc/api/build_variables.md
+++ b/doc/api/build_variables.md
--- a/doc/api/builds.md
+++ b/doc/api/builds.md
--- a/doc/api/ci/builds.md
+++ b/doc/api/ci/builds.md
--- a/doc/api/ci/runners.md
+++ b/doc/api/ci/runners.md
--- a/doc/api/commits.md
+++ b/doc/api/commits.md
--- a/doc/api/deploy_key_multiple_projects.md
+++ b/doc/api/deploy_key_multiple_projects.md
--- a/doc/api/deploy_keys.md
+++ b/doc/api/deploy_keys.md
--- a/doc/api/enviroments.md
+++ b/doc/api/enviroments.md
--- a/doc/api/groups.md
+++ b/doc/api/groups.md
--- a/doc/api/issues.md
+++ b/doc/api/issues.md
--- a/doc/api/labels.md
+++ b/doc/api/labels.md
--- a/doc/api/licenses.md
+++ b/doc/api/licenses.md
--- a/doc/api/members.md
+++ b/doc/api/members.md
--- a/doc/api/merge_requests.md
+++ b/doc/api/merge_requests.md
--- a/doc/api/milestones.md
+++ b/doc/api/milestones.md
--- a/doc/api/namespaces.md
+++ b/doc/api/namespaces.md
--- a/doc/api/notes.md
+++ b/doc/api/notes.md
--- a/doc/api/oauth2.md
+++ b/doc/api/oauth2.md
--- a/doc/api/projects.md
+++ b/doc/api/projects.md
--- a/doc/api/repository_files.md
+++ b/doc/api/repository_files.md
--- a/doc/api/runners.md
+++ b/doc/api/runners.md
--- a/doc/api/session.md
+++ b/doc/api/session.md
--- a/doc/api/settings.md
+++ b/doc/api/settings.md
--- a/doc/api/sidekiq_metrics.md
+++ b/doc/api/sidekiq_metrics.md
--- a/doc/api/system_hooks.md
+++ b/doc/api/system_hooks.md
--- a/doc/api/tags.md
+++ b/doc/api/tags.md
--- a/doc/api/todos.md
+++ b/doc/api/todos.md
--- a/doc/ci/examples/php.md
+++ b/doc/ci/examples/php.md
--- a/doc/ci/triggers/README.md
+++ b/doc/ci/triggers/README.md
--- a/doc/development/README.md
+++ b/doc/development/README.md
--- a/doc/development/doc_styleguide.md
+++ b/doc/development/doc_styleguide.md
--- a/doc/development/newlines_styleguide.md
+++ b/doc/development/newlines_styleguide.md
--- a/doc/development/performance.md
+++ b/doc/development/performance.md
--- a/doc/development/ui_guide.md
+++ b/doc/development/ui_guide.md
--- a/doc/development/what_requires_downtime.md
+++ b/doc/development/what_requires_downtime.md
--- a/doc/install/installation.md
+++ b/doc/install/installation.md
--- a/doc/integration/bitbucket.md
+++ b/doc/integration/bitbucket.md
--- a/doc/integration/github.md
+++ b/doc/integration/github.md
--- a/doc/integration/gitlab.md
+++ b/doc/integration/gitlab.md
--- a/doc/integration/twitter.md
+++ b/doc/integration/twitter.md
--- a/doc/legal/corporate_contributor_license_agreement.md
+++ b/doc/legal/corporate_contributor_license_agreement.md
--- a/doc/monitoring/health_check.md
+++ b/doc/monitoring/health_check.md
--- a/doc/raketasks/backup_restore.md
+++ b/doc/raketasks/backup_restore.md
--- a/doc/raketasks/user_management.md
+++ b/doc/raketasks/user_management.md
--- a/doc/update/4.0-to-4.1.md
+++ b/doc/update/4.0-to-4.1.md
--- a/doc/update/4.2-to-5.0.md
+++ b/doc/update/4.2-to-5.0.md
--- a/doc/update/5.0-to-5.1.md
+++ b/doc/update/5.0-to-5.1.md
--- a/doc/update/5.2-to-5.3.md
+++ b/doc/update/5.2-to-5.3.md
--- a/doc/update/5.3-to-5.4.md
+++ b/doc/update/5.3-to-5.4.md
--- a/doc/update/6.9-to-7.0.md
+++ b/doc/update/6.9-to-7.0.md
--- a/doc/update/7.0-to-7.1.md
+++ b/doc/update/7.0-to-7.1.md
--- a/doc/update/7.14-to-8.0.md
+++ b/doc/update/7.14-to-8.0.md
--- a/doc/update/8.10-to-8.11.md
+++ b/doc/update/8.10-to-8.11.md
--- a/doc/user/admin_area/img/admin_labels.png
+++ b/doc/user/admin_area/img/admin_labels.png
--- a/doc/user/admin_area/labels.md
+++ b/doc/user/admin_area/labels.md
--- a/doc/user/project/labels.md
+++ b/doc/user/project/labels.md
--- a/doc/workflow/importing/import_projects_from_github.md
+++ b/doc/workflow/importing/import_projects_from_github.md
--- a/doc/workflow/shortcuts.md
+++ b/doc/workflow/shortcuts.md
--- a/doc/workflow/shortcuts.png
+++ b/doc/workflow/shortcuts.png
--- a/features/explore/groups.feature
+++ b/features/explore/groups.feature
--- a/features/steps/explore/groups.rb
+++ b/features/steps/explore/groups.rb
--- a/features/steps/project/badges/build.rb
+++ b/features/steps/project/badges/build.rb
--- a/features/steps/shared/builds.rb
+++ b/features/steps/shared/builds.rb
--- a/lib/api/access_requests.rb
+++ b/lib/api/access_requests.rb
--- a/lib/api/api.rb
+++ b/lib/api/api.rb
--- a/lib/api/deploy_keys.rb
+++ b/lib/api/deploy_keys.rb
--- a/lib/api/entities.rb
+++ b/lib/api/entities.rb
--- a/lib/api/group_members.rb
+++ b/lib/api/group_members.rb
--- a/lib/api/helpers.rb
+++ b/lib/api/helpers.rb
--- a/lib/api/helpers/members_helpers.rb
+++ b/lib/api/helpers/members_helpers.rb
--- a/lib/api/internal.rb
+++ b/lib/api/internal.rb
--- a/lib/api/members.rb
+++ b/lib/api/members.rb
--- a/lib/api/project_members.rb
+++ b/lib/api/project_members.rb
--- a/lib/api/projects.rb
+++ b/lib/api/projects.rb
--- a/lib/backup/files.rb
+++ b/lib/backup/files.rb
--- a/lib/backup/manager.rb
+++ b/lib/backup/manager.rb
--- a/lib/backup/repository.rb
+++ b/lib/backup/repository.rb
--- a/lib/banzai/filter/relative_link_filter.rb
+++ b/lib/banzai/filter/relative_link_filter.rb
--- a/lib/banzai/filter/video_link_filter.rb
+++ b/lib/banzai/filter/video_link_filter.rb
--- a/lib/ci/gitlab_ci_yaml_processor.rb
+++ b/lib/ci/gitlab_ci_yaml_processor.rb
--- a/lib/ci/static_model.rb
+++ b/lib/ci/static_model.rb
--- a/lib/extracts_path.rb
+++ b/lib/extracts_path.rb
--- a/lib/gitlab/backend/grack_auth.rb
+++ b/lib/gitlab/backend/grack_auth.rb
--- a/lib/gitlab/badge/build.rb
+++ b/lib/gitlab/badge/build.rb
--- a/lib/gitlab/badge/build/metadata.rb
+++ b/lib/gitlab/badge/build/metadata.rb
--- a/lib/gitlab/badge/build/template.rb
+++ b/lib/gitlab/badge/build/template.rb
--- a/lib/gitlab/changes_list.rb
+++ b/lib/gitlab/changes_list.rb
--- a/lib/gitlab/checks/change_access.rb
+++ b/lib/gitlab/checks/change_access.rb
--- a/lib/gitlab/ci/config/node/validatable.rb
+++ b/lib/gitlab/ci/config/node/validatable.rb
--- a/lib/gitlab/email/receiver.rb
+++ b/lib/gitlab/email/receiver.rb
--- a/lib/gitlab/git.rb
+++ b/lib/gitlab/git.rb
--- a/lib/gitlab/git_access.rb
+++ b/lib/gitlab/git_access.rb
--- a/lib/gitlab/github_import/branch_formatter.rb
+++ b/lib/gitlab/github_import/branch_formatter.rb
--- a/lib/gitlab/github_import/hook_formatter.rb
+++ b/lib/gitlab/github_import/hook_formatter.rb
--- a/lib/gitlab/github_import/importer.rb
+++ b/lib/gitlab/github_import/importer.rb
--- a/lib/gitlab/github_import/pull_request_formatter.rb
+++ b/lib/gitlab/github_import/pull_request_formatter.rb
--- a/lib/gitlab/import_export/avatar_restorer.rb
+++ b/lib/gitlab/import_export/avatar_restorer.rb
--- a/lib/gitlab/import_export/relation_factory.rb
+++ b/lib/gitlab/import_export/relation_factory.rb
--- a/lib/gitlab/ldap/access.rb
+++ b/lib/gitlab/ldap/access.rb
--- a/lib/gitlab/ldap/adapter.rb
+++ b/lib/gitlab/ldap/adapter.rb
--- a/lib/gitlab/lfs/response.rb
+++ b/lib/gitlab/lfs/response.rb
--- a/lib/gitlab/lfs/router.rb
+++ b/lib/gitlab/lfs/router.rb
--- a/lib/gitlab/mail_room.rb
+++ b/lib/gitlab/mail_room.rb
--- a/lib/gitlab/popen.rb
+++ b/lib/gitlab/popen.rb
--- a/lib/gitlab/redis.rb
+++ b/lib/gitlab/redis.rb
--- a/lib/gitlab/request_profiler/middleware.rb
+++ b/lib/gitlab/request_profiler/middleware.rb
--- a/lib/support/nginx/gitlab
+++ b/lib/support/nginx/gitlab
--- a/lib/support/nginx/gitlab-ssl
+++ b/lib/support/nginx/gitlab-ssl
--- a/lib/tasks/gitlab/check.rake
+++ b/lib/tasks/gitlab/check.rake
--- a/lib/tasks/gitlab/info.rake
+++ b/lib/tasks/gitlab/info.rake
--- a/lib/tasks/gitlab/shell.rake
+++ b/lib/tasks/gitlab/shell.rake
--- a/lib/tasks/gitlab/task_helpers.rake
+++ b/lib/tasks/gitlab/task_helpers.rake
--- a/lib/tasks/spinach.rake
+++ b/lib/tasks/spinach.rake
--- a/scripts/lint-doc.sh
+++ b/scripts/lint-doc.sh
--- a/spec/config/mail_room_spec.rb
+++ b/spec/config/mail_room_spec.rb
--- a/spec/controllers/admin/users_controller_spec.rb
+++ b/spec/controllers/admin/users_controller_spec.rb
--- a/spec/controllers/application_controller_spec.rb
+++ b/spec/controllers/application_controller_spec.rb
--- a/spec/controllers/groups/avatars_controller_spec.rb
+++ b/spec/controllers/groups/avatars_controller_spec.rb
--- a/spec/controllers/groups/milestones_controller_spec.rb
+++ b/spec/controllers/groups/milestones_controller_spec.rb
--- a/spec/controllers/profiles/avatars_controller_spec.rb
+++ b/spec/controllers/profiles/avatars_controller_spec.rb
--- a/spec/controllers/profiles/keys_controller_spec.rb
+++ b/spec/controllers/profiles/keys_controller_spec.rb
--- a/spec/controllers/projects/avatars_controller_spec.rb
+++ b/spec/controllers/projects/avatars_controller_spec.rb
--- a/spec/controllers/projects/commit_controller_spec.rb
+++ b/spec/controllers/projects/commit_controller_spec.rb
--- a/spec/controllers/projects/commits_controller_spec.rb
+++ b/spec/controllers/projects/commits_controller_spec.rb
--- a/spec/controllers/projects/compare_controller_spec.rb
+++ b/spec/controllers/projects/compare_controller_spec.rb
--- a/spec/controllers/projects/forks_controller_spec.rb
+++ b/spec/controllers/projects/forks_controller_spec.rb
--- a/spec/controllers/projects/issues_controller_spec.rb
+++ b/spec/controllers/projects/issues_controller_spec.rb
--- a/spec/controllers/projects/merge_requests_controller_spec.rb
+++ b/spec/controllers/projects/merge_requests_controller_spec.rb
--- a/spec/controllers/projects/milestones_controller_spec.rb
+++ b/spec/controllers/projects/milestones_controller_spec.rb
--- a/spec/controllers/projects/protected_branches_controller_spec.rb
+++ b/spec/controllers/projects/protected_branches_controller_spec.rb
--- a/spec/controllers/projects/raw_controller_spec.rb
+++ b/spec/controllers/projects/raw_controller_spec.rb
--- a/spec/controllers/projects/services_controller_spec.rb
+++ b/spec/controllers/projects/services_controller_spec.rb
--- a/spec/controllers/projects_controller_spec.rb
+++ b/spec/controllers/projects_controller_spec.rb
--- a/spec/factories/broadcast_messages.rb
+++ b/spec/factories/broadcast_messages.rb
--- a/spec/factories/ci/builds.rb
+++ b/spec/factories/ci/builds.rb
--- a/spec/factories/ci/pipelines.rb
+++ b/spec/factories/ci/pipelines.rb
--- a/spec/factories/commit_statuses.rb
+++ b/spec/factories/commit_statuses.rb
--- a/spec/factories_spec.rb
+++ b/spec/factories_spec.rb
--- a/spec/features/admin/admin_abuse_reports_spec.rb
+++ b/spec/features/admin/admin_abuse_reports_spec.rb
--- a/spec/features/admin/admin_disables_git_access_protocol_spec.rb
+++ b/spec/features/admin/admin_disables_git_access_protocol_spec.rb
--- a/spec/features/admin/admin_hooks_spec.rb
+++ b/spec/features/admin/admin_hooks_spec.rb
--- a/spec/features/admin/admin_projects_spec.rb
+++ b/spec/features/admin/admin_projects_spec.rb
--- a/spec/features/admin/admin_users_spec.rb
+++ b/spec/features/admin/admin_users_spec.rb
--- a/spec/features/atom/dashboard_spec.rb
+++ b/spec/features/atom/dashboard_spec.rb
--- a/spec/features/atom/issues_spec.rb
+++ b/spec/features/atom/issues_spec.rb
--- a/spec/features/atom/users_spec.rb
+++ b/spec/features/atom/users_spec.rb
--- a/spec/features/ci_lint_spec.rb
+++ b/spec/features/ci_lint_spec.rb
--- a/spec/features/commits_spec.rb
+++ b/spec/features/commits_spec.rb
--- a/spec/features/compare_spec.rb
+++ b/spec/features/compare_spec.rb
--- a/spec/features/dashboard/label_filter_spec.rb
+++ b/spec/features/dashboard/label_filter_spec.rb
--- a/spec/features/dashboard_issues_spec.rb
+++ b/spec/features/dashboard_issues_spec.rb
--- a/spec/features/gitlab_flavored_markdown_spec.rb
+++ b/spec/features/gitlab_flavored_markdown_spec.rb
--- a/spec/features/help_pages_spec.rb
+++ b/spec/features/help_pages_spec.rb
--- a/spec/features/issues/award_emoji_spec.rb
+++ b/spec/features/issues/award_emoji_spec.rb
--- a/spec/features/issues/award_spec.rb
+++ b/spec/features/issues/award_spec.rb
--- a/spec/features/issues/bulk_assignment_labels_spec.rb
+++ b/spec/features/issues/bulk_assignment_labels_spec.rb
--- a/spec/features/issues/filter_by_labels_spec.rb
+++ b/spec/features/issues/filter_by_labels_spec.rb
--- a/spec/features/issues/filter_by_milestone_spec.rb
+++ b/spec/features/issues/filter_by_milestone_spec.rb
--- a/spec/features/issues/filter_issues_spec.rb
+++ b/spec/features/issues/filter_issues_spec.rb
--- a/spec/features/issues/issue_sidebar_spec.rb
+++ b/spec/features/issues/issue_sidebar_spec.rb
--- a/spec/features/issues/new_branch_button_spec.rb
+++ b/spec/features/issues/new_branch_button_spec.rb
--- a/spec/features/issues/todo_spec.rb
+++ b/spec/features/issues/todo_spec.rb
--- a/spec/features/issues/update_issues_spec.rb
+++ b/spec/features/issues/update_issues_spec.rb
--- a/spec/features/issues_spec.rb
+++ b/spec/features/issues_spec.rb
--- a/spec/features/login_spec.rb
+++ b/spec/features/login_spec.rb
--- a/spec/features/merge_requests/award_spec.rb
+++ b/spec/features/merge_requests/award_spec.rb
--- a/spec/features/merge_requests/created_from_fork_spec.rb
+++ b/spec/features/merge_requests/created_from_fork_spec.rb
--- a/spec/features/merge_requests/edit_mr_spec.rb
+++ b/spec/features/merge_requests/edit_mr_spec.rb
--- a/spec/features/merge_requests/filter_by_milestone_spec.rb
+++ b/spec/features/merge_requests/filter_by_milestone_spec.rb
--- a/spec/features/merge_requests/merge_when_build_succeeds_spec.rb
+++ b/spec/features/merge_requests/merge_when_build_succeeds_spec.rb
--- a/spec/features/milestone_spec.rb
+++ b/spec/features/milestone_spec.rb
--- a/spec/features/notes_on_merge_requests_spec.rb
+++ b/spec/features/notes_on_merge_requests_spec.rb
--- a/spec/features/participants_autocomplete_spec.rb
+++ b/spec/features/participants_autocomplete_spec.rb
--- a/spec/features/profile_spec.rb
+++ b/spec/features/profile_spec.rb
--- a/spec/features/profiles/password_spec.rb
+++ b/spec/features/profiles/password_spec.rb
--- a/spec/features/projects/files/files_sort_submodules_with_folders_spec.rb
+++ b/spec/features/projects/files/files_sort_submodules_with_folders_spec.rb
--- a/spec/features/projects/labels/update_prioritization_spec.rb
+++ b/spec/features/projects/labels/update_prioritization_spec.rb
--- a/spec/features/pipelines_spec.rb
+++ b/spec/features/pipelines_spec.rb
--- a/spec/features/projects_spec.rb
+++ b/spec/features/projects_spec.rb
--- a/spec/features/search_spec.rb
+++ b/spec/features/search_spec.rb
--- a/spec/features/todos/todos_spec.rb
+++ b/spec/features/todos/todos_spec.rb
--- a/spec/features/variables_spec.rb
+++ b/spec/features/variables_spec.rb
--- a/spec/finders/merge_requests_finder_spec.rb
+++ b/spec/finders/merge_requests_finder_spec.rb
--- a/spec/finders/notes_finder_spec.rb
+++ b/spec/finders/notes_finder_spec.rb
--- a/spec/fixtures/config/redis_new_format_host.yml
+++ b/spec/fixtures/config/redis_new_format_host.yml
--- a/spec/fixtures/config/redis_new_format_socket.yml
+++ b/spec/fixtures/config/redis_new_format_socket.yml
--- a/spec/fixtures/config/redis_old_format_host.yml
+++ b/spec/fixtures/config/redis_old_format_host.yml
--- a/spec/fixtures/config/redis_old_format_socket.yml
+++ b/spec/fixtures/config/redis_old_format_socket.yml
--- a/spec/fixtures/project_services/campfire/rooms.json
+++ b/spec/fixtures/project_services/campfire/rooms.json
--- a/spec/fixtures/project_services/campfire/rooms2.json
+++ b/spec/fixtures/project_services/campfire/rooms2.json
--- a/spec/helpers/application_helper_spec.rb
+++ b/spec/helpers/application_helper_spec.rb
--- a/spec/helpers/blob_helper_spec.rb
+++ b/spec/helpers/blob_helper_spec.rb
--- a/spec/helpers/diff_helper_spec.rb
+++ b/spec/helpers/diff_helper_spec.rb
--- a/spec/helpers/emails_helper_spec.rb
+++ b/spec/helpers/emails_helper_spec.rb
--- a/spec/helpers/events_helper_spec.rb
+++ b/spec/helpers/events_helper_spec.rb
--- a/spec/helpers/gitlab_markdown_helper_spec.rb
+++ b/spec/helpers/gitlab_markdown_helper_spec.rb
--- a/spec/helpers/graph_helper_spec.rb
+++ b/spec/helpers/graph_helper_spec.rb
--- a/spec/helpers/groups_helper_spec.rb
+++ b/spec/helpers/groups_helper_spec.rb
--- a/spec/helpers/issues_helper_spec.rb
+++ b/spec/helpers/issues_helper_spec.rb
--- a/spec/helpers/members_helper_spec.rb
+++ b/spec/helpers/members_helper_spec.rb
--- a/spec/helpers/notes_helper_spec.rb
+++ b/spec/helpers/notes_helper_spec.rb
--- a/spec/helpers/search_helper_spec.rb
+++ b/spec/helpers/search_helper_spec.rb
--- a/spec/helpers/submodule_helper_spec.rb
+++ b/spec/helpers/submodule_helper_spec.rb
--- a/spec/helpers/tree_helper_spec.rb
+++ b/spec/helpers/tree_helper_spec.rb
--- a/spec/initializers/secret_token_spec.rb
+++ b/spec/initializers/secret_token_spec.rb
--- a/spec/lib/banzai/filter/relative_link_filter_spec.rb
+++ b/spec/lib/banzai/filter/relative_link_filter_spec.rb
--- a/spec/lib/banzai/filter/video_link_filter_spec.rb
+++ b/spec/lib/banzai/filter/video_link_filter_spec.rb
--- a/spec/lib/ci/charts_spec.rb
+++ b/spec/lib/ci/charts_spec.rb
--- a/spec/lib/ci/gitlab_ci_yaml_processor_spec.rb
+++ b/spec/lib/ci/gitlab_ci_yaml_processor_spec.rb
--- a/spec/lib/disable_email_interceptor_spec.rb
+++ b/spec/lib/disable_email_interceptor_spec.rb
--- a/spec/lib/extracts_path_spec.rb
+++ b/spec/lib/extracts_path_spec.rb
--- a/spec/lib/gitlab/asciidoc_spec.rb
+++ b/spec/lib/gitlab/asciidoc_spec.rb
--- a/spec/lib/gitlab/auth_spec.rb
+++ b/spec/lib/gitlab/auth_spec.rb
--- a/spec/lib/gitlab/badge/build/metadata_spec.rb
+++ b/spec/lib/gitlab/badge/build/metadata_spec.rb
--- a/spec/lib/gitlab/badge/build/template_spec.rb
+++ b/spec/lib/gitlab/badge/build/template_spec.rb
--- a/spec/lib/gitlab/badge/build_spec.rb
+++ b/spec/lib/gitlab/badge/build_spec.rb
--- a/spec/lib/gitlab/changes_list_spec.rb
+++ b/spec/lib/gitlab/changes_list_spec.rb
--- a/spec/lib/gitlab/ci/config/node/validatable_spec.rb
+++ b/spec/lib/gitlab/ci/config/node/validatable_spec.rb
--- a/spec/lib/gitlab/git/hook_spec.rb
+++ b/spec/lib/gitlab/git/hook_spec.rb
--- a/spec/lib/gitlab/git_access_spec.rb
+++ b/spec/lib/gitlab/git_access_spec.rb
--- a/spec/lib/gitlab/github_import/branch_formatter_spec.rb
+++ b/spec/lib/gitlab/github_import/branch_formatter_spec.rb
--- a/spec/lib/gitlab/github_import/hook_formatter_spec.rb
+++ b/spec/lib/gitlab/github_import/hook_formatter_spec.rb
--- a/spec/lib/gitlab/github_import/pull_request_formatter_spec.rb
+++ b/spec/lib/gitlab/github_import/pull_request_formatter_spec.rb
--- a/spec/lib/gitlab/import_export/project.json
+++ b/spec/lib/gitlab/import_export/project.json
--- a/spec/lib/gitlab/import_export/project_tree_restorer_spec.rb
+++ b/spec/lib/gitlab/import_export/project_tree_restorer_spec.rb
--- a/spec/lib/gitlab/ldap/access_spec.rb
+++ b/spec/lib/gitlab/ldap/access_spec.rb
--- a/spec/lib/gitlab/ldap/user_spec.rb
+++ b/spec/lib/gitlab/ldap/user_spec.rb
--- a/spec/lib/gitlab/o_auth/user_spec.rb
+++ b/spec/lib/gitlab/o_auth/user_spec.rb
--- a/spec/lib/gitlab/project_search_results_spec.rb
+++ b/spec/lib/gitlab/project_search_results_spec.rb
--- a/spec/lib/gitlab/redis_spec.rb
+++ b/spec/lib/gitlab/redis_spec.rb
--- a/spec/lib/gitlab/saml/user_spec.rb
+++ b/spec/lib/gitlab/saml/user_spec.rb
--- a/spec/lib/gitlab/search_results_spec.rb
+++ b/spec/lib/gitlab/search_results_spec.rb
--- a/spec/lib/gitlab/upgrader_spec.rb
+++ b/spec/lib/gitlab/upgrader_spec.rb
--- a/spec/mailers/emails/profile_spec.rb
+++ b/spec/mailers/emails/profile_spec.rb
--- a/spec/mailers/notify_spec.rb
+++ b/spec/mailers/notify_spec.rb
--- a/spec/models/application_setting_spec.rb
+++ b/spec/models/application_setting_spec.rb
--- a/spec/models/broadcast_message_spec.rb
+++ b/spec/models/broadcast_message_spec.rb
--- a/spec/models/build_spec.rb
+++ b/spec/models/build_spec.rb
--- a/spec/models/ci/pipeline_spec.rb
+++ b/spec/models/ci/pipeline_spec.rb
--- a/spec/models/ci/trigger_spec.rb
+++ b/spec/models/ci/trigger_spec.rb
--- a/spec/models/commit_status_spec.rb
+++ b/spec/models/commit_status_spec.rb
--- a/spec/models/concerns/milestoneish_spec.rb
+++ b/spec/models/concerns/milestoneish_spec.rb
--- a/spec/models/concerns/token_authenticatable_spec.rb
+++ b/spec/models/concerns/token_authenticatable_spec.rb
--- a/spec/models/forked_project_link_spec.rb
+++ b/spec/models/forked_project_link_spec.rb
--- a/spec/models/global_milestone_spec.rb
+++ b/spec/models/global_milestone_spec.rb
--- a/spec/models/group_spec.rb
+++ b/spec/models/group_spec.rb
--- a/spec/models/hooks/project_hook_spec.rb
+++ b/spec/models/hooks/project_hook_spec.rb
--- a/spec/models/hooks/system_hook_spec.rb
+++ b/spec/models/hooks/system_hook_spec.rb
--- a/spec/models/key_spec.rb
+++ b/spec/models/key_spec.rb
--- a/spec/models/label_spec.rb
+++ b/spec/models/label_spec.rb
--- a/spec/models/legacy_diff_note_spec.rb
+++ b/spec/models/legacy_diff_note_spec.rb
--- a/spec/models/member_spec.rb
+++ b/spec/models/member_spec.rb
--- a/spec/models/members/group_member_spec.rb
+++ b/spec/models/members/group_member_spec.rb
--- a/spec/models/members/project_member_spec.rb
+++ b/spec/models/members/project_member_spec.rb
--- a/spec/models/merge_request_spec.rb
+++ b/spec/models/merge_request_spec.rb
--- a/spec/models/milestone_spec.rb
+++ b/spec/models/milestone_spec.rb
--- a/spec/models/namespace_spec.rb
+++ b/spec/models/namespace_spec.rb
--- a/spec/models/note_spec.rb
+++ b/spec/models/note_spec.rb
--- a/spec/models/project_security_spec.rb
+++ b/spec/models/project_security_spec.rb
--- a/spec/models/project_services/asana_service_spec.rb
+++ b/spec/models/project_services/asana_service_spec.rb
--- a/spec/models/project_services/assembla_service_spec.rb
+++ b/spec/models/project_services/assembla_service_spec.rb
--- a/spec/models/project_services/campfire_service_spec.rb
+++ b/spec/models/project_services/campfire_service_spec.rb
--- a/spec/models/project_services/external_wiki_service_spec.rb
+++ b/spec/models/project_services/external_wiki_service_spec.rb
--- a/spec/models/project_services/flowdock_service_spec.rb
+++ b/spec/models/project_services/flowdock_service_spec.rb
--- a/spec/models/project_services/gemnasium_service_spec.rb
+++ b/spec/models/project_services/gemnasium_service_spec.rb
--- a/spec/models/project_services/gitlab_issue_tracker_service_spec.rb
+++ b/spec/models/project_services/gitlab_issue_tracker_service_spec.rb
--- a/spec/models/project_services/hipchat_service_spec.rb
+++ b/spec/models/project_services/hipchat_service_spec.rb
--- a/spec/models/project_services/irker_service_spec.rb
+++ b/spec/models/project_services/irker_service_spec.rb
--- a/spec/models/project_services/jira_service_spec.rb
+++ b/spec/models/project_services/jira_service_spec.rb
--- a/spec/models/project_services/pushover_service_spec.rb
+++ b/spec/models/project_services/pushover_service_spec.rb
--- a/spec/models/project_services/slack_service/note_message_spec.rb
+++ b/spec/models/project_services/slack_service/note_message_spec.rb
--- a/spec/models/project_services/slack_service/wiki_page_message_spec.rb
+++ b/spec/models/project_services/slack_service/wiki_page_message_spec.rb
--- a/spec/models/project_services/slack_service_spec.rb
+++ b/spec/models/project_services/slack_service_spec.rb
--- a/spec/models/project_spec.rb
+++ b/spec/models/project_spec.rb
--- a/spec/models/repository_spec.rb
+++ b/spec/models/repository_spec.rb
--- a/spec/models/service_spec.rb
+++ b/spec/models/service_spec.rb
--- a/spec/models/user_spec.rb
+++ b/spec/models/user_spec.rb
--- a/spec/models/wiki_page_spec.rb
+++ b/spec/models/wiki_page_spec.rb
--- a/spec/requests/api/access_requests_spec.rb
+++ b/spec/requests/api/access_requests_spec.rb
--- a/spec/requests/api/api_helpers_spec.rb
+++ b/spec/requests/api/api_helpers_spec.rb
--- a/spec/requests/api/award_emoji_spec.rb
+++ b/spec/requests/api/award_emoji_spec.rb
--- a/spec/requests/api/branches_spec.rb
+++ b/spec/requests/api/branches_spec.rb
--- a/spec/requests/api/builds_spec.rb
+++ b/spec/requests/api/builds_spec.rb
--- a/spec/requests/api/commit_statuses_spec.rb
+++ b/spec/requests/api/commit_statuses_spec.rb
--- a/spec/requests/api/commits_spec.rb
+++ b/spec/requests/api/commits_spec.rb
--- a/spec/requests/api/deploy_keys.rb
+++ b/spec/requests/api/deploy_keys.rb
--- a/spec/requests/api/deploy_keys_spec.rb
+++ b/spec/requests/api/deploy_keys_spec.rb
--- a/spec/requests/api/files_spec.rb
+++ b/spec/requests/api/files_spec.rb
--- a/spec/requests/api/fork_spec.rb
+++ b/spec/requests/api/fork_spec.rb
--- a/spec/requests/api/group_members_spec.rb
+++ b/spec/requests/api/group_members_spec.rb
--- a/spec/requests/api/groups_spec.rb
+++ b/spec/requests/api/groups_spec.rb
--- a/spec/requests/api/internal_spec.rb
+++ b/spec/requests/api/internal_spec.rb
--- a/spec/requests/api/issues_spec.rb
+++ b/spec/requests/api/issues_spec.rb
--- a/spec/requests/api/keys_spec.rb
+++ b/spec/requests/api/keys_spec.rb
--- a/spec/requests/api/labels_spec.rb
+++ b/spec/requests/api/labels_spec.rb
--- a/spec/requests/api/members_spec.rb
+++ b/spec/requests/api/members_spec.rb
--- a/spec/requests/api/merge_requests_spec.rb
+++ b/spec/requests/api/merge_requests_spec.rb
--- a/spec/requests/api/milestones_spec.rb
+++ b/spec/requests/api/milestones_spec.rb
--- a/spec/requests/api/namespaces_spec.rb
+++ b/spec/requests/api/namespaces_spec.rb
--- a/spec/requests/api/notes_spec.rb
+++ b/spec/requests/api/notes_spec.rb
--- a/spec/requests/api/project_hooks_spec.rb
+++ b/spec/requests/api/project_hooks_spec.rb
--- a/spec/requests/api/project_members_spec.rb
+++ b/spec/requests/api/project_members_spec.rb
--- a/spec/requests/api/project_snippets_spec.rb
+++ b/spec/requests/api/project_snippets_spec.rb
--- a/spec/requests/api/projects_spec.rb
+++ b/spec/requests/api/projects_spec.rb
--- a/spec/requests/api/repositories_spec.rb
+++ b/spec/requests/api/repositories_spec.rb
--- a/spec/requests/api/runners_spec.rb
+++ b/spec/requests/api/runners_spec.rb
--- a/spec/requests/api/services_spec.rb
+++ b/spec/requests/api/services_spec.rb
--- a/spec/requests/api/session_spec.rb
+++ b/spec/requests/api/session_spec.rb
--- a/spec/requests/api/settings_spec.rb
+++ b/spec/requests/api/settings_spec.rb
--- a/spec/requests/api/system_hooks_spec.rb
+++ b/spec/requests/api/system_hooks_spec.rb
--- a/spec/requests/api/tags_spec.rb
+++ b/spec/requests/api/tags_spec.rb
--- a/spec/requests/api/triggers_spec.rb
+++ b/spec/requests/api/triggers_spec.rb
--- a/spec/requests/api/users_spec.rb
+++ b/spec/requests/api/users_spec.rb
--- a/spec/requests/api/variables_spec.rb
+++ b/spec/requests/api/variables_spec.rb
--- a/spec/requests/ci/api/builds_spec.rb
+++ b/spec/requests/ci/api/builds_spec.rb
--- a/spec/requests/ci/api/triggers_spec.rb
+++ b/spec/requests/ci/api/triggers_spec.rb
--- a/spec/requests/git_http_spec.rb
+++ b/spec/requests/git_http_spec.rb
--- a/spec/requests/lfs_http_spec.rb
+++ b/spec/requests/lfs_http_spec.rb
--- a/spec/routing/project_routing_spec.rb
+++ b/spec/routing/project_routing_spec.rb
--- a/spec/services/ci/create_builds_service_spec.rb
+++ b/spec/services/ci/create_builds_service_spec.rb
--- a/spec/services/create_commit_builds_service_spec.rb
+++ b/spec/services/create_commit_builds_service_spec.rb
--- a/spec/services/ci/create_trigger_request_service_spec.rb
+++ b/spec/services/ci/create_trigger_request_service_spec.rb
--- a/spec/services/ci/image_for_build_service_spec.rb
+++ b/spec/services/ci/image_for_build_service_spec.rb
--- a/spec/services/ci/process_pipeline_service_spec.rb
+++ b/spec/services/ci/process_pipeline_service_spec.rb
--- a/spec/services/create_snippet_service_spec.rb
+++ b/spec/services/create_snippet_service_spec.rb
--- a/spec/services/delete_user_service_spec.rb
+++ b/spec/services/delete_user_service_spec.rb
--- a/spec/services/event_create_service_spec.rb
+++ b/spec/services/event_create_service_spec.rb
--- a/spec/services/git_hooks_service_spec.rb
+++ b/spec/services/git_hooks_service_spec.rb
--- a/spec/services/git_push_service_spec.rb
+++ b/spec/services/git_push_service_spec.rb
--- a/spec/services/issues/bulk_update_service_spec.rb
+++ b/spec/services/issues/bulk_update_service_spec.rb
--- a/spec/services/issues/close_service_spec.rb
+++ b/spec/services/issues/close_service_spec.rb
--- a/spec/services/issues/update_service_spec.rb
+++ b/spec/services/issues/update_service_spec.rb
--- a/spec/services/merge_requests/close_service_spec.rb
+++ b/spec/services/merge_requests/close_service_spec.rb
--- a/spec/services/merge_requests/create_service_spec.rb
+++ b/spec/services/merge_requests/create_service_spec.rb
--- a/spec/services/merge_requests/get_urls_service_spec.rb
+++ b/spec/services/merge_requests/get_urls_service_spec.rb
--- a/spec/services/merge_requests/merge_request_diff_cache_service_spec.rb
+++ b/spec/services/merge_requests/merge_request_diff_cache_service_spec.rb
--- a/spec/services/merge_requests/merge_service_spec.rb
+++ b/spec/services/merge_requests/merge_service_spec.rb
--- a/spec/services/merge_requests/merge_when_build_succeeds_service_spec.rb
+++ b/spec/services/merge_requests/merge_when_build_succeeds_service_spec.rb
--- a/spec/services/merge_requests/refresh_service_spec.rb
+++ b/spec/services/merge_requests/refresh_service_spec.rb
--- a/spec/services/merge_requests/reopen_service_spec.rb
+++ b/spec/services/merge_requests/reopen_service_spec.rb
--- a/spec/services/merge_requests/update_service_spec.rb
+++ b/spec/services/merge_requests/update_service_spec.rb
--- a/spec/services/notification_service_spec.rb
+++ b/spec/services/notification_service_spec.rb
--- a/spec/services/projects/autocomplete_service_spec.rb
+++ b/spec/services/projects/autocomplete_service_spec.rb
--- a/spec/services/projects/create_service_spec.rb
+++ b/spec/services/projects/create_service_spec.rb
--- a/spec/services/projects/enable_deploy_key_service_spec.rb
+++ b/spec/services/projects/enable_deploy_key_service_spec.rb
--- a/spec/services/projects/fork_service_spec.rb
+++ b/spec/services/projects/fork_service_spec.rb
--- a/spec/services/projects/update_service_spec.rb
+++ b/spec/services/projects/update_service_spec.rb
--- a/spec/services/repair_ldap_blocked_user_service_spec.rb
+++ b/spec/services/repair_ldap_blocked_user_service_spec.rb
--- a/spec/services/search_service_spec.rb
+++ b/spec/services/search_service_spec.rb
--- a/spec/services/system_note_service_spec.rb
+++ b/spec/services/system_note_service_spec.rb
--- a/spec/services/test_hook_service_spec.rb
+++ b/spec/services/test_hook_service_spec.rb
--- a/spec/spec_helper.rb
+++ b/spec/spec_helper.rb
--- a/spec/support/api/members_shared_examples.rb
+++ b/spec/support/api/members_shared_examples.rb
--- a/spec/support/select2_helper.rb
+++ b/spec/support/select2_helper.rb
--- a/spec/tasks/gitlab/backup_rake_spec.rb
+++ b/spec/tasks/gitlab/backup_rake_spec.rb
--- a/spec/tasks/gitlab/db_rake_spec.rb
+++ b/spec/tasks/gitlab/db_rake_spec.rb
--- a/spec/teaspoon_env.rb
+++ b/spec/teaspoon_env.rb
--- a/spec/workers/post_receive_spec.rb
+++ b/spec/workers/post_receive_spec.rb