Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Backport helpers from GroupSAML failure messagesce-jej/saml-failure-messages | James Edwards-Jones | 2018-05-21 | 1 | -2/+2 |
| | |||||
* | Backport IdentityLinker#failed? from GroupSaml callback flow | James Edwards-Jones | 2018-05-04 | 1 | -1/+1 |
| | |||||
* | Exclude LDAP from OmniauthCallbackController base methods | James Edwards-Jones | 2018-04-30 | 1 | -2/+2 |
| | |||||
* | Replace define_method with alias_method in Omniauth Controllers | James Edwards-Jones | 2018-04-23 | 1 | -7/+5 |
| | |||||
* | Unify Saml::IdentityLinker and OAuth::IdentityLinker | James Edwards-Jones | 2018-04-23 | 1 | -2/+2 |
| | |||||
* | Show error on failed OAuth account link | James Edwards-Jones | 2018-04-22 | 1 | -0/+6 |
| | |||||
* | Refactor OmniauthCallbacksController to remove duplication | James Edwards-Jones | 2018-04-22 | 1 | -81/+53 |
| | | | | | Moves LDAP to its own controller with tests Provides path forward for implementing GroupSaml | ||||
* | Writes specs43525-limit-number-of-failed-logins-using-ldap | Tiago Botelho | 2018-03-22 | 1 | -2/+4 |
| | |||||
* | Tracks the number of failed attempts made by a user trying to authenticate ↵ | Tiago Botelho | 2018-03-22 | 1 | -0/+10 |
| | | | | with any external authentication method | ||||
* | Merge branch 'fix/auth0-unsafe-login-10-6' into 'security-10-6' | James Lopez | 2018-03-21 | 1 | -0/+14 |
| | | | | | | [10.6] Fix GitLab Auth0 integration signs in the wrong user See merge request gitlab/gitlabhq!2354 | ||||
* | Moved o_auth/saml/ldap modules under gitlab/auth | Horatiu Eugen Vlad | 2018-02-28 | 1 | -11/+11 |
| | |||||
* | use Gitlab::UserSettings directly as a singleton instead of ↵ | Mario de la Ossa | 2018-02-02 | 1 | -1/+1 |
| | | | | including/extending it | ||||
* | Merge branch 'jej/fix-disabled-oauth-access-10-3' into 'security-10-3' | Robert Speicher | 2018-01-16 | 1 | -0/+9 |
| | | | | | | | | | | [10.3] Prevent login with disabled OAuth providers See merge request gitlab/gitlabhq!2296 (cherry picked from commit 4936650427ffc88e6ee927aedbb2c724d24b094c) a0f9d222 Prevents login with disabled OAuth providers | ||||
* | Adds Rubocop rule for line break around conditionals | 🙈 jacopo beschi 🙉 | 2018-01-11 | 1 | -0/+3 |
| | |||||
* | Allow password authentication to be disabled entirely | Markus Koller | 2017-11-23 | 1 | -1/+1 |
| | |||||
* | Changing OAuth lookup to be case insensitive | Francisco Javier López | 2017-11-17 | 1 | -2/+4 |
| | |||||
* | Define ldap methods at runtime | Bob Van Landuyt | 2017-08-24 | 1 | -0/+8 |
| | | | | | This avoids loading the `OmniAuthCallbacksController` at boot time so it doesn't mess up the `before_action`-chain | ||||
* | Enable Layout/TrailingWhitespace cop and auto-correct offenses | Robert Speicher | 2017-08-15 | 1 | -2/+2 |
| | |||||
* | [EE Backport] Update log audit event in omniauth_callbacks_controller.rb | James Lopez | 2017-08-07 | 1 | -6/+15 |
| | |||||
* | Fix build for !11963. | Timothy Andrew | 2017-07-06 | 1 | -1/+1 |
| | | | | | | | | | | | - Don't use `request.env['omniauth.params']` if it isn't present. - Remove the `saml` section from the `gitlab.yml` test section. Some tests depend on this section not being initially present, so it can be overridden in the test. This MR doesn't add any tests for SAML, so we didn't really need this in the first place anyway. - Clean up the test -> omniauth section of `gitlab.yml` | ||||
* | Implement "remember me" for OAuth-based login. | Timothy Andrew | 2017-07-06 | 1 | -0/+8 |
| | | | | | | | | | | | | - Pass a `remember_me` query parameter along with the initial OAuth request, and pick this parameter up during the omniauth callback from request.env['omniauth.params']`. - For 2FA-based login, copy the `remember_me` param from `omniauth.params` to `params`, which the 2FA process will pick up. - For non-2FA-based login, simply call the `remember_me` devise method to set the session cookie. | ||||
* | Enable Style/DotPosition Rubocop :cop: | Grzegorz Bizon | 2017-06-21 | 1 | -2/+2 |
| | |||||
* | Update design of auth error page | Annabel Dunstone Gray | 2017-05-05 | 1 | -1/+1 |
| | |||||
* | No more and/or | Douwe Maan | 2017-02-21 | 1 | -1/+1 |
| | |||||
* | Added support for Authentiq Back-Channel Logout | Alexandros Keramidas | 2017-02-20 | 1 | -0/+7 |
| | |||||
* | Added tests for 2FA check on OAuth request | Patricio Cano | 2016-07-04 | 1 | -2/+5 |
| | |||||
* | Add 2FA check to the OAuth authentication mechanism | Patricio Cano | 2016-06-29 | 1 | -0/+1 |
| | |||||
* | Enable Style/MethodDefParentheses rubocop copstyle/enable-method-def-parentheses-rubocop-cop | Grzegorz Bizon | 2016-05-30 | 1 | -1/+1 |
| | | | | | | Use def with parentheses when there are parameters. See #17478 | ||||
* | Add missing proper nil and error handling to SAML login process. | Patricio Cano | 2016-04-07 | 1 | -10/+16 |
| | |||||
* | Avoid saving again if the user attributes haven't changed | Patricio Cano | 2016-04-04 | 1 | -1/+1 |
| | |||||
* | Decouple SAML authentication from the default Omniauth logic | Patricio Cano | 2016-02-18 | 1 | -18/+36 |
| | |||||
* | Revert "Merge branch 'saml-decoupling' into 'master' " | Douwe Maan | 2016-02-18 | 1 | -36/+18 |
| | | | | | This reverts commit c04e22fba8d130a58f498ff48127712d7dae17ee, reversing changes made to 0feab326d52222dc0ab5bd0a6b15dab297f44aa9. | ||||
* | Decouple SAML authentication from the default Omniauth logic | Patricio Cano | 2016-02-18 | 1 | -18/+36 |
| | |||||
* | Support Two-factor Authentication for LDAP usersrs-backport-ldap-2fa | Robert Speicher | 2016-02-03 | 1 | -2/+7 |
| | | | | Closes #12653 | ||||
* | Backport LDAP user assignment changes from EE | Robert Speicher | 2016-01-28 | 1 | -7/+8 |
| | | | | See https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/146 | ||||
* | add CAS authentication support | tduehr | 2015-12-14 | 1 | -1/+15 |
| | |||||
* | Fix rubocop warnings in app | Guilherme Garnier | 2015-10-03 | 1 | -2/+2 |
| | |||||
* | Allow custom label to be set for authentication providers.auth-icons-labels | Douwe Maan | 2015-07-23 | 1 | -2/+3 |
| | |||||
* | Audit log for user authentication | Valery Sizov | 2015-07-06 | 1 | -0/+8 |
| | |||||
* | Add "Remember me" checkbox to LDAP signin form.ldap-remember-me | Douwe Maan | 2015-06-05 | 1 | -1/+1 |
| | |||||
* | Add SAML support via Omniauth | Alex Lossent | 2015-05-27 | 1 | -0/+3 |
| | |||||
* | Improve OAuth signup error message. | Douwe Maan | 2015-05-13 | 1 | -2/+9 |
| | |||||
* | When add new social account - redirect to accounts page and show notice message | Dmitriy Zaporozhets | 2015-02-08 | 1 | -1/+1 |
| | |||||
* | ForbiddenAction constant fix | Valery Sizov | 2015-01-12 | 1 | -1/+1 |
| | |||||
* | Supporting for multiple omniauth provider for the same user | Valery Sizov | 2014-12-04 | 1 | -3/+2 |
| | |||||
* | Multi-provider auth. LDAP is not reworked | Valery Sizov | 2014-12-04 | 1 | -4/+3 |
| | |||||
* | Refactor error message a bit | Dmitriy Zaporozhets | 2014-10-17 | 1 | -2/+10 |
| | | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> | ||||
* | Add regressiontest to verify allow_single_sign_on setting | Jan-Willem van der Meer | 2014-10-16 | 1 | -8/+5 |
| | | | | | | | verification for #1677 Since testing omniauth_callback_controller.rb is very difficult, the logic is moved to the models | ||||
* | Disallow new users from Oauth signup if `allow_single_sign_on` is disabled | Jan-Willem van der Meer | 2014-10-16 | 1 | -2/+6 |
| | | | | | | | Because devise will trigger a save, allowing unsaved users to login, behaviour had changed. The current implementation returns a pre-build user, which can be saved without errors. Reported in #1677 | ||||
* | Move dynamic omniauth declarations to initializer | Jan-Willem van der Meer | 2014-10-14 | 1 | -4/+0 |
| |