20dfe25c15
Export assigned issues in iCalendar feed
2018-05-31 14:01:04 +00:00
7a139c1602
Add username to terms message in git and API calls
...
This will make it clearer to users which account is being used to make
the API/git call. So they know which account needs to be used to
accept the terms.
Closes #46649
2018-05-24 18:19:48 +02:00
6226d19c71
Minimize CE/EE difference in Gitlab::Auth::LDAP::Config
...
Signed-off-by: Rémy Coutable <remy@rymai.me>
2018-05-18 16:30:53 +02:00
8b287679a1
Minimize CE/EE difference in Gitlab::Auth::LDAP::Access
...
Signed-off-by: Rémy Coutable <remy@rymai.me>
2018-05-18 16:30:53 +02:00
dfdbf198b3
Minimize CE/EE difference in Gitlab::Auth::UserAuthFinders
...
Signed-off-by: Rémy Coutable <remy@rymai.me>
2018-05-18 16:30:53 +02:00
37cd2b9b4d
Minimize CE/EE difference in Gitlab::Auth::Saml::User
...
Signed-off-by: Rémy Coutable <remy@rymai.me>
2018-05-18 16:30:53 +02:00
0a581fcfa2
Minimize CE/EE difference in Gitlab::Auth::Saml::Config
...
Signed-off-by: Rémy Coutable <remy@rymai.me>
2018-05-18 16:30:53 +02:00
1be2ec2d04
Fix system hook not firing for blocked users when LDAP sign-in is used
...
An LDAP sign-in request results in a different request parameter than
a standard GitLab sign-in. Since Warden doesn't pass us the user that
was blocked, we first search for a `username` in the request parameters
and then look for `user.login`.
Closes #46307
2018-05-12 22:33:29 -07:00
f7f13f9db0
Block access to API & git when terms are enforced
...
When terms are enforced, but the user has not accepted the terms
access to the API & git is rejected with a message directing the user
to the web app to accept the terms.
2018-05-10 17:02:27 +02:00
7425f2b322
Backport IdentityLinker#failed? from GroupSaml callback flow
2018-05-04 15:00:59 +01:00
dd09a19ad6
Auth::User classes refactor adds should_save?
2018-04-23 16:24:56 +01:00
795cd7f952
Replace define_method with alias_method in Omniauth Controllers
2018-04-23 16:24:47 +01:00
d3a8a07423
Unify Saml::IdentityLinker and OAuth::IdentityLinker
2018-04-23 13:53:32 +01:00
f8d54913bb
Show error on failed OAuth account link
2018-04-22 23:50:56 +01:00
f10c999bca
Refactor OmniauthCallbacksController to remove duplication
...
Moves LDAP to its own controller with tests
Provides path forward for implementing GroupSaml
2018-04-22 23:50:55 +01:00
ae84eaeba7
Add better LDAP connection handling
2018-04-04 09:07:28 +00:00
7d01792614
Fix LDAP login without user in DB
2018-03-27 09:21:17 +02:00
afe2c15e6b
Fix provider server URL used when listing repos to import
...
Also use Gitlab::Auth::OAuth::Provider.config_for to access OmniAuth config
2018-03-12 16:01:43 -05:00
5c7a738105
[CE] Add Naming/FileName rule checking expected class/module per filename
2018-03-08 12:56:54 +00:00
6d3cb7e22e
Make oauth provider login generic
2018-03-05 22:26:40 +00:00
1ad5df49b1
Moved o_auth/saml/ldap modules under gitlab/auth
2018-02-28 16:53:02 +01:00
7a6c7bd66b
Allow token authentication on go-get request
2018-02-23 10:33:46 +00:00
4f6e0379b4
Fixing request json mime type
2018-01-15 09:09:21 +00:00
0d187a9a65
Log and send a system hook if a blocked user fails to login
...
Closes #41633
2018-01-14 22:22:06 -08:00
4188c10c07
Renaming AuthenticationException to AuthenticationError
2017-11-17 13:33:21 +01:00
7f0317917a
Changes after rebase
2017-11-17 10:09:56 +01:00
b810f479d5
Removing Offender
2017-11-17 10:02:11 +01:00
1436598e49
Moved Exceptions to Gitlab::Auth
2017-11-17 10:02:11 +01:00
aa84ef1e1a
Moving exceptions to UserAuthFinders
2017-11-17 10:02:11 +01:00
98f7982cec
Leaving atom? query to fix tests
2017-11-17 10:02:11 +01:00
29521a313a
Change the rss url guard clause
2017-11-17 10:02:11 +01:00
f189657523
Added some more comments
2017-11-17 10:02:11 +01:00
2d5397d928
Removed method handle_return_value
2017-11-17 10:02:11 +01:00
21153a4f47
Homogenising the type of the request handled by UserAuthFinder. Also tests fixed
2017-11-17 10:02:11 +01:00
aecc3eb080
Applied some code review comments
2017-11-17 10:02:10 +01:00
374179a970
Removing private token
2017-11-17 10:01:21 +01:00
41ebd06ddc
Some fixes after rebase
2017-11-17 10:01:20 +01:00
470b5dc326
Updated refactor and pushing to see if test fails
2017-11-17 10:00:48 +01:00
d948e67913
First refactor
2017-11-17 10:00:08 +01:00
4e5a97d4f3
Refactor with ActionDispatch::Request
2017-11-17 09:58:18 +01:00
43a682ccaa
Fix OAuth API and RSS rate limiting
2017-11-17 09:58:18 +01:00
4edfad9678
Enable Layout/TrailingWhitespace cop and auto-correct offenses
2017-08-15 13:44:37 -04:00
cb3b4a15e6
Support multiple Redis instances based on queue type
2017-07-11 03:35:47 +00:00
0b81b5ace0
Create read_registry scope with JWT auth
...
This is the first commit doing mainly 3 things:
1. create a new scope and allow users to use it
2. Have the JWTController respond correctly on this
3. Updates documentation to suggest usage of PATs
There is one gotcha, there will be no support for impersonation tokens, as this
seems not needed.
Fixes gitlab-org/gitlab-ce#19219
2017-06-05 12:26:49 +02:00
70b9d8da4c
Remove unecessary defaults for uniq ip block, cleanup refactoring leftovers
2017-03-06 15:45:43 +01:00
8a9bc24ef8
align schema.rb with upstream and fix rubocop warning about not freezing mutable constants and empty error classes
2017-03-06 15:41:50 +01:00
0ef8a64348
Remove unecessary calls to limit_user!, UniqueIps Middleware, and address MR review
...
- cleanup formating in haml
- clarify time window is in seconds
- cleanup straneous chunks in db/schema
- rename count_uniqe_ips to update_and_return_ips_count
- other
2017-03-06 15:41:25 +01:00
9cc0ff8f46
Cleanup common code in Unique Ips tests
2017-03-06 15:41:25 +01:00
8993801f0c
Test various login scenarios if the limit gets enforced
2017-03-06 15:41:25 +01:00
66dc71599c
Cleanup formatting
2017-03-06 15:41:24 +01:00
Imre Farkas
Bob Van Landuyt
Rémy Coutable
Stan Hu
James Edwards-Jones
Francisco Javier López
Horatiu Eugen Vlad
Rubén Dávila
Gabriel Mazetto
Douwe Maan
Michael Kozono
Robert Speicher
Paul Charlton
Z.J. van de Weg
Pawel Chojnacki