Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Display and revoke active sessions | Alexis Reigel ( 🌴 may 2nd - may 9th 🌴 ) | 2018-05-02 | 1 | -15/+11 |
| | |||||
* | `current_application_settings` belongs on `Gitlab::CurrentSettings` | Sean McGivern | 2017-08-31 | 1 | -2/+1 |
| | | | | | | | | | | | | | | | | The initializers including this were doing so at the top level, so every object loaded after them had a `current_application_settings` method. However, if someone had rack-attack enabled (which was loaded before these initializers), it would try to load the API, and fail, because `Gitlab::CurrentSettings` didn't have that method. To fix this: 1. Don't include `Gitlab::CurrentSettings` at the top level. We do not need `Object.new.current_application_settings` to work. 2. Make `Gitlab::CurrentSettings` explicitly `extend self`, as we already use it like that in several places. 3. Change the initializers to use that new form. | ||||
* | Support multiple Redis instances based on queue type | Paul Charlton | 2017-07-11 | 1 | -3/+3 |
| | |||||
* | Update session cookie key name to be unique to instance in development31644-make-cookie-sessions-unique | Eric Eastwood | 2017-06-01 | 1 | -1/+7 |
| | | | | Fix https://gitlab.com/gitlab-org/gitlab-ce/issues/31644 | ||||
* | Deduplicated resque.yml loading from several places | Gabriel Mazetto | 2016-08-04 | 1 | -2/+2 |
| | | | | We will trust redis configuration params loading to Gitlab::RedisConfig. | ||||
* | Enable Style/RedundantParentheses rubocop coprubocop/enable-redundant-parentheses-cop | Grzegorz Bizon | 2016-05-30 | 1 | -1/+1 |
| | | | | See #17478 | ||||
* | Fix "remember me" sign in option | Jacob Vosmaer | 2016-05-02 | 1 | -1/+1 |
| | |||||
* | Redis configuration consistencyredis_config_consistency | Valery Sizov | 2016-04-13 | 1 | -1/+1 |
| | |||||
* | Add Gitlab::Redis connection pool | Jacob Vosmaer | 2016-04-04 | 1 | -1/+1 |
| | |||||
* | Parse config/resque.yml in one place only | Jacob Vosmaer | 2016-03-09 | 1 | -1/+4 |
| | |||||
* | Merge branch 'master' into reference-pipeline-and-caching | Douwe Maan | 2015-12-02 | 1 | -4/+5 |
|\ | |||||
| * | Rails update to 4.2.4 | Valery Sizov | 2015-11-25 | 1 | -2/+2 |
| | | |||||
| * | Also fallback to a default value if none is set.session_expire_delay_cannot_be_nil | Marin Jankovski | 2015-11-24 | 1 | -2/+2 |
| | | |||||
| * | Maybe rescue session_expire_delay by setting a default value. | Marin Jankovski | 2015-11-24 | 1 | -0/+1 |
| | | |||||
| * | Disabling cache for test environment | Valery Sizov | 2015-11-16 | 1 | -9/+11 |
| | | |||||
* | | Disabling caching in test environment because it was causing issues with ↵ | Douwe Maan | 2015-10-22 | 1 | -9/+13 |
|/ | | | | Markdown | ||||
* | Merge branch 'master' into ci-and-ce-sitting-in-a-tree-k-i-s-s-i-n-g | Dmitriy Zaporozhets | 2015-09-11 | 1 | -1/+6 |
|\ | | | | | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> | ||||
| * | Fix reading session_expire_delay when application settings are not yet ↵ | Kamil Trzcinski | 2015-09-09 | 1 | -1/+6 |
| | | | | | | | | created and migrations are not yet done | ||||
* | | Groundwork for merging CI into CE | Douwe Maan | 2015-08-25 | 1 | -1/+1 |
|/ | |||||
* | Ensure `session_expire_delay` field exists before accessing itrs-issue-1798 | Robert Speicher | 2015-06-13 | 1 | -4/+4 |
| | | | | Closes #1798 | ||||
* | session_expire_seconds => session_expire_delay | themaze75 | 2015-06-10 | 1 | -2/+6 |
| | | | | | delay is in seconds more legible code in session_store Added `GitLab restart required` help block to session_expire_delay | ||||
* | Add session expiration delay configuration through UI application | Eric Maziade | 2015-06-05 | 1 | -1/+1 |
| | | | settings | ||||
* | Merge branch 'redis_settings' | Dmitriy Zaporozhets | 2014-08-28 | 1 | -1/+1 |
|\ | | | | | | | | | | | | | Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> Conflicts: CHANGELOG | ||||
| * | Store sessions in a Redis namespace | Jacob Vosmaer | 2014-08-26 | 1 | -1/+1 |
| | | | | | | | | This makes less of a mess of the Redis root. | ||||
* | | Expire Rack sessions after 1 week | Jacob Vosmaer | 2014-08-26 | 1 | -0/+1 |
|/ | |||||
* | Give the Rails cache its own Redis namespace | Jacob Vosmaer | 2014-04-15 | 1 | -1/+1 |
| | | | | | | | | Before this change, Rails cache data was stored in a global Redis namespace. As a consequence, clearing the Rails cache (`rake cache:clear`) would also delete all Sidekiq queue data and session storage. This change puts all Rails cache data in a `cache:gitlab` namespace, making `rake cache:clear` safe again. | ||||
* | Enable secure option if https is used. | Marin Jankovski | 2013-12-25 | 1 | -1/+1 |
| | |||||
* | Respect the configured redis URL when initializing the session store | vollnhals | 2013-10-30 | 1 | -0/+1 |
| | | | | | | | | | It was not possible to start Gitlab with a redis server running on another host or port. Every other subsystem that uses redis respects the settings in config/resque.yml. This patch uses the configured url from the cache_store configuration. The cache_store configuration already loads the correct redis url from config/resque.yml. Closes #5406 | ||||
* | The cookie store is vulnerable to session replay attacks. | Sytse Sijbrandij | 2013-10-11 | 1 | -9/+7 |
| | |||||
* | Fixes grack authentification under relative_url_root | amouhzi | 2013-08-15 | 1 | -1/+2 |
| | | | | | | | | | | | | | | | | | | | | | | Ref: https://github.com/gitlabhq/gitlabhq/commit/e6159b8725f99af78f446f8d33fa0e52b7780430 Ref: https://github.com/gitlabhq/gitlabhq/pull/3204 Ref: https://github.com/gitlabhq/gitlabhq/issues/1228 Add Rails' variable in application.rb to support relative url This variable is used by assets compilation and other modules. Note that user needs to change application.rb too Restrict session cookie to the relative path if set. Ref: https://github.com/gitlabhq/gitlabhq/commit/2c2f1e31856a4decdae469974f5bea8245316f7e Fix Update attachment_uploader.rb bug with relative URL See: https://github.com/gitlabhq/gitlabhq/commit/161afda3fa4fca58f396e9c3acbd72bc14490ace Fix Wall relative bug with attachement files (javascript) | ||||
* | Secure and httponly options on cookie. | Marin Jankovski | 2012-09-26 | 1 | -1/+3 |
| | |||||
* | init commit | gitlabhq | 2011-10-09 | 1 | -0/+8 |