diff options
author | GitLab Bot <gitlab-bot@gitlab.com> | 2020-08-20 18:42:06 +0000 |
---|---|---|
committer | GitLab Bot <gitlab-bot@gitlab.com> | 2020-08-20 18:42:06 +0000 |
commit | 6e4e1050d9dba2b7b2523fdd1768823ab85feef4 (patch) | |
tree | 78be5963ec075d80116a932011d695dd33910b4e /doc/security/passwords_for_integrated_authentication_methods.md | |
parent | 1ce776de4ae122aba3f349c02c17cebeaa8ecf07 (diff) | |
download | gitlab-ce-6e4e1050d9dba2b7b2523fdd1768823ab85feef4.tar.gz |
Add latest changes from gitlab-org/gitlab@13-3-stable-ee
Diffstat (limited to 'doc/security/passwords_for_integrated_authentication_methods.md')
-rw-r--r-- | doc/security/passwords_for_integrated_authentication_methods.md | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/doc/security/passwords_for_integrated_authentication_methods.md b/doc/security/passwords_for_integrated_authentication_methods.md new file mode 100644 index 00000000000..704af49b2d2 --- /dev/null +++ b/doc/security/passwords_for_integrated_authentication_methods.md @@ -0,0 +1,14 @@ +--- +type: reference +--- + +# Generated passwords for users created through integrated authentication + +GitLab allows users to set up accounts through integration with external [authentication and authorization providers](../administration/auth/README.md). + +These authentication methods do not require the user to explicitly create a password for their accounts. +However, to maintain data consistency, GitLab requires passwords for all user accounts. + +For such accounts, we use the [`friendly_token`](https://github.com/heartcombo/devise/blob/f26e05c20079c9acded3c0ee16da0df435a28997/lib/devise.rb#L492) method provided by the Devise gem to generate a random, unique and secure password and sets it as the account password during sign up. + +The length of the generated password is the set based on the value of [maximum password length](password_length_limits.md#modify-maximum-password-length-using-configuration-file) as set in the Devise configuation. The default value is 128 characters. |