Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add latest changes from gitlab-org/gitlab@13-5-stable-eev13.5.0-rc42 | GitLab Bot | 2020-10-21 | 1 | -1/+6 |
| | |||||
* | Add latest changes from gitlab-org/gitlab@13-4-stable-ee | GitLab Bot | 2020-09-19 | 1 | -10/+88 |
| | |||||
* | Add latest changes from gitlab-org/security/gitlab@13-3-stable-ee | GitLab Bot | 2020-09-01 | 1 | -1/+3 |
| | |||||
* | Externalize strings of Two-Factor Authentication page in user profile | antonyliu | 2019-05-31 | 1 | -3/+3 |
| | |||||
* | Add additional link to 2fa page | Gosia Ksionek | 2019-03-20 | 1 | -11/+14 |
| | |||||
* | Enable more frozen string in app/controllers/ | gfyoung | 2018-09-23 | 1 | -1/+3 |
| | | | | | | | | | | | | | | | | Enables frozen string for the following: * app/controllers/dashboard/**/*.rb * app/controllers/explore/**/*.rb * app/controllers/google_api/**/*.rb * app/controllers/groups/**/*.rb * app/controllers/import/**/*.rb * app/controllers/instance_statistics/**/*.rb * app/controllers/ldap/**/*.rb * app/controllers/oauth/**/*.rb * app/controllers/profiles/**/*.rb Partially addresses #47424. | ||||
* | Updates from `rubocop -a` | Lin Jen-Shin | 2018-07-09 | 1 | -1/+1 |
| | |||||
* | refactor users update service | James Lopez | 2017-09-28 | 1 | -3/+3 |
| | |||||
* | refactor services to match EE signature | James Lopez | 2017-09-28 | 1 | -3/+3 |
| | |||||
* | fix spec failures | James Lopez | 2017-06-23 | 1 | -3/+1 |
| | |||||
* | update code based on feedback | James Lopez | 2017-06-23 | 1 | -1/+3 |
| | |||||
* | refactor update user service not to do auth checks | James Lopez | 2017-06-23 | 1 | -3/+3 |
| | |||||
* | more refactoring | James Lopez | 2017-06-23 | 1 | -2/+1 |
| | |||||
* | more refactoring based on feedback | James Lopez | 2017-06-23 | 1 | -5/+7 |
| | |||||
* | added service in the rest of controllers and classes | James Lopez | 2017-06-23 | 1 | -3/+3 |
| | |||||
* | Add a rubocop rule to check if a method 'redirect_to' is used without ↵31840-add-a-rubocop-that-forbids-redirect_to-inside-a-controller-destroy-action-without-an-explicit-status | blackst0ne | 2017-06-07 | 1 | -1/+1 |
| | | | | explicitly set 'status' in 'destroy' actions of controllers | ||||
* | state the reason to the user for the required 2fa | Alexis Reigel | 2017-04-06 | 1 | -4/+17 |
| | |||||
* | Rename skip_tfa session variable to skip_two_factor | Markus Koller | 2017-04-06 | 1 | -1/+1 |
| | |||||
* | Rename check_2fa_requirement to check_two_factor_requirement | Markus Koller | 2017-04-06 | 1 | -1/+1 |
| | |||||
* | Enable Style/ColonMethodCall | Douwe Maan | 2017-02-23 | 1 | -1/+1 |
| | |||||
* | Add GitLab host to 2FA QR and manual info | Drew Blessing | 2016-12-16 | 1 | -2/+6 |
| | | | | | | | | The two factor authentication account string only had the user's email address. This led to ambiguous entries in two factor code generating apps. This adds the GitLab host to the account string in the standard format (according to Google). No matter the code generator this change disambiguates the entry. | ||||
* | Address review comments from @smcgivern.17334-u2f-device-identifiers | Timothy Andrew | 2016-08-18 | 1 | -2/+1 |
| | | | | | | | | 1. Remove an unnecessary (since we're fetching all the records anyway) `pluck` while fetching U2F registration records. 2. Align "Your device was successfully set up!" section with the "U2F Devices" table below. | ||||
* | Allow naming U2F devices. | Timothy Andrew | 2016-08-18 | 1 | -3/+8 |
| | | | | | | | | 1. Display a list of U2F devices on the `two_factor_auth` page. 2. Allow deleting individual U2F devices. 3. Allow setting a (optional) name for a device (during registration). | ||||
* | Load Javascript U2F library selectively. | Timothy Andrew | 2016-07-14 | 1 | -2/+1 |
| | | | | | | | | | | 1. Only on supported Chrome versions 2. Mainly, this lets us simplify the javascript-based U2F check to `window.u2f`, where `window.u2f` can either be loaded from the GitLab server (for Chrome) or from the Firefox extension. 3. This is a better way to provide browser detection for U2F. | ||||
* | Implement U2F registration. | Timothy Andrew | 2016-06-06 | 1 | -6/+39 |
| | | | | | | | | | | | - Move the `TwoFactorAuthsController`'s `new` action to `show`, since the page is not used to create a single "two factor auth" anymore. We can have a single 2FA authenticator app, along with any number of U2F devices, in any combination, so the page will be accessed after the first "two factor auth" is created. - Add the `u2f` javascript library, which provides an API to the browser's U2F implementation. - Add tests for the JS components | ||||
* | Don't show any "2FA required" message if it's not actually requiredrs-improve-grace-period | Robert Speicher | 2016-02-29 | 1 | -5/+7 |
| | | | | | | | Prior, if the user had enabled and then disabled 2FA, they would be shown a "You must enable Two-factor Authentication for your account." message when going back to re-activate it, even if 2FA enforcement was disabled. | ||||
* | Update wording for 2FA requirement noticers-2fa-requirement-wording | Robert Speicher | 2016-01-23 | 1 | -2/+2 |
| | |||||
* | Fixed codestyle and added 2FA documentationfeature/force-tfa | Gabriel Mazetto | 2015-12-24 | 1 | -1/+3 |
| | |||||
* | specs for forced two-factor authentication and grace period | Gabriel Mazetto | 2015-12-24 | 1 | -1/+8 |
| | | | | simplified code and fixed stuffs | ||||
* | Grace period support for TFA | Gabriel Mazetto | 2015-12-24 | 1 | -1/+13 |
| | |||||
* | WIP require two factor authentication | Gabriel Mazetto | 2015-12-24 | 1 | -0/+2 |
| | |||||
* | Bump devise-two-factor to 2.0.0rs-bump-two-factor | Robert Speicher | 2015-09-19 | 1 | -1/+1 |
| | | | | | | Addresses internal https://dev.gitlab.org/gitlab/gitlabhq/issues/2605 See https://github.com/tinfoil/devise-two-factor/pull/43 | ||||
* | Add User#disable_two_factor!rs-disable-2fa | Robert Speicher | 2015-07-10 | 1 | -7/+1 |
| | | | | | This method encapsulates all the logic for disabling 2FA on a specific User model. | ||||
* | Use User#two_factor_enabled instead of otp_required_for_loginrs-dev-issue-2415 | Robert Speicher | 2015-06-19 | 1 | -2/+2 |
| | |||||
* | Prefix 2FA issuer with the GitLab host (e.g., 'dev.gitlab.org')rs-dev-issue-2373 | Robert Speicher | 2015-06-16 | 1 | -1/+5 |
| | |||||
* | Bump secret key length to 32rs-manual-2fa-entry | Robert Speicher | 2015-05-23 | 1 | -1/+1 |
| | |||||
* | Add support for manually entering 2FA details | Robert Speicher | 2015-05-23 | 1 | -1/+2 |
| | |||||
* | Clear all 2FA-related fields when user disables the feature | Robert Speicher | 2015-05-09 | 1 | -2/+7 |
| | |||||
* | Fix nav and layout for TwoFactorAuthsController | Robert Speicher | 2015-05-09 | 1 | -1/+1 |
| | |||||
* | Render 2fa recovery codes instead of downloading it | Dmitriy Zaporozhets | 2015-05-09 | 1 | -3/+3 |
| | |||||
* | Add support for backup codes | Dmitriy Zaporozhets | 2015-05-09 | 1 | -0/+6 |
| | |||||
* | Fix rubocop complain | Dmitriy Zaporozhets | 2015-05-09 | 1 | -1/+0 |
| | |||||
* | Make 2 factor authentication work | Dmitriy Zaporozhets | 2015-05-09 | 1 | -7/+24 |
| | |||||
* | Create Two-factor authentication resource for user | Dmitriy Zaporozhets | 2015-05-09 | 1 | -0/+22 |