summaryrefslogtreecommitdiff
path: root/doc/security/img
Commit message (Collapse)AuthorAgeFilesLines
* Add docs for local requests whitelistReuben Pereira2019-08-081-0/+0
| | | | | - Add documentation under security/webhooks since similar docs are present there.
* Compress images with pngquantAchilleas Pipinellis2019-08-071-0/+0
|
* Refactor SystemHookUrlValidator and specsGeorge Koltsov2019-08-022-0/+0
| | | | | | Simplify SystemHookUrlValidator to inherit from PublicUrlValidator Refactor specs to move out shared examples to be used in both system hooks and public url validators.
* Update security/webhooks.md doc page & specsGeorge Koltsov2019-08-021-0/+0
| | | | | | Updating security/webhooks.md to match new behaviour as well as drying up few specs to extract shared examples
* Clarify and improve 2FA configuration informationEvan Read2019-06-052-0/+0
|
* Docs: add details about restricted SSH keysTristan Williams2019-02-221-0/+0
|
* Compress all PNG images under doc/Achilleas Pipinellis2018-08-274-0/+0
| | | | | | | | | | The pngquant tool was used https://pngquant.org, and particularly, the following command: /usr/bin/pngquant -f --skip-if-larger --ext .png --speed 1 image.png Before: 47584K After : 34924K
* Improve documentation of SSRF protectionFrancisco Javier López2018-04-241-0/+0
|
* More review commentsNick Thomas2017-08-301-0/+0
|
* Rework the permissions model for SSH key restrictionsNick Thomas2017-08-301-0/+0
| | | | | | | | | | | | | | | `allowed_key_types` is removed and the `minimum_<type>_bits` fields are renamed to `<tech>_key_restriction`. A special sentinel value (`-1`) signifies that the key type is disabled. This also feeds through to the UI - checkboxes per key type are out, inline selection of "forbidden" and "allowed" (i.e., no restrictions) are in. As with the previous model, unknown key types are disallowed, even if the underlying ssh daemon happens to support them. The defaults have also been changed from the lowest known bit size to "no restriction". So if someone does happen to have a 768-bit RSA key, it will continue to work on upgrade, at least until the administrator restricts them.
* Add settings for minimum key strength and allowed key typeNick Thomas2017-08-301-0/+0
| | | | | | | | This is an amalgamation of: * Cory Hinshaw: Initial implementation !5552 * Rémy Coutable: Updates !9350 * Nick Thomas: Resolve conflicts and add ED25519 support !13712
* Support 2FA requirement per-groupMarkus Koller2017-04-061-0/+0
|
* Reduce size of images from 25MB to 13MB using pngquantAchilleas Pipinellis2016-11-221-0/+0
| | | | | | Took it from https://gitlab.com/gitlab-com/www-gitlab-com/merge_requests/3232 [ci skip]
* optimize png images losslessly using zopflipngPeter Dave Hello2016-06-291-0/+0
|
* Add image to 2fa security documentationAchilleas Pipinellis2016-01-221-0/+0
[ci skip]