diff options
| author | Robert Speicher <robert@gitlab.com> | 2016-08-18 23:18:58 +0000 |
|---|---|---|
| committer | Robert Speicher <robert@gitlab.com> | 2016-08-18 23:18:58 +0000 |
| commit | a59c33e4a3c492bdf05c67be47a5ba14d40e7bb8 (patch) | |
| tree | c40adb301fc5cbd6634a7c3a268e7ce03237ae9b /lib/api/variables.rb | |
| parent | 4eba6865711c42817eaa4a8109be152afb4efa7c (diff) | |
| parent | de5f2380293f9c8ccbb9a1c83a309589f42b77b8 (diff) | |
| download | gitlab-ce-a59c33e4a3c492bdf05c67be47a5ba14d40e7bb8.tar.gz | |
Merge branch '2fa-check-git-http' into 'master'
2FA checks for Git over HTTP
## What does this MR do?
This MR allows the use of `PersonalAccessTokens` to access Git over HTTP and makes that the only allowed method if the user has 2FA enabled. If a user with 2FA enabled tries to access Git over HTTP using his username and password the request will be denied and the user will be presented with the following message:
```
remote: HTTP Basic: Access denied
remote: You have 2FA enabled, please use a personal access token for Git over HTTP.
remote: You can generate one at http://localhost:3000/profile/personal_access_tokens
fatal: Authentication failed for 'http://localhost:3000/documentcloud/underscore.git/'
```
## What are the relevant issue numbers?
Fixes #13568
See merge request !5764
Diffstat (limited to 'lib/api/variables.rb')
0 files changed, 0 insertions, 0 deletions