summaryrefslogtreecommitdiff
path: root/lib/gitlab/auth
Commit message (Collapse)AuthorAgeFilesLines
* Disable SAML if OmniAuth is disabled48932-disable-saml-if-omniauth-is-disabledLin Jen-Shin2018-07-201-1/+1
| | | | | We also try to unify the way we setup OmniAuth, and how we check if it's enabled or not.
* Updates from `rubocop -a`Lin Jen-Shin2018-07-091-1/+1
|
* Honor saml assurance level to allow 2FA bypassingRoger Rüttimann2018-06-254-0/+27
|
* Export assigned issues in iCalendar feedImre Farkas2018-05-312-5/+15
|
* Add username to terms message in git and API callsbvl-add-username-to-terms-messageBob Van Landuyt2018-05-241-4/+4
| | | | | | | | This will make it clearer to users which account is being used to make the API/git call. So they know which account needs to be used to accept the terms. Closes #46649
* Minimize CE/EE difference in Gitlab::Auth::LDAP::ConfigRémy Coutable2018-05-181-2/+16
| | | | Signed-off-by: Rémy Coutable <remy@rymai.me>
* Minimize CE/EE difference in Gitlab::Auth::LDAP::AccessRémy Coutable2018-05-181-10/+31
| | | | Signed-off-by: Rémy Coutable <remy@rymai.me>
* Minimize CE/EE difference in Gitlab::Auth::UserAuthFindersRémy Coutable2018-05-181-4/+6
| | | | Signed-off-by: Rémy Coutable <remy@rymai.me>
* Minimize CE/EE difference in Gitlab::Auth::Saml::UserRémy Coutable2018-05-181-4/+2
| | | | Signed-off-by: Rémy Coutable <remy@rymai.me>
* Minimize CE/EE difference in Gitlab::Auth::Saml::ConfigRémy Coutable2018-05-181-0/+4
| | | | Signed-off-by: Rémy Coutable <remy@rymai.me>
* Fix system hook not firing for blocked users when LDAP sign-in is usedStan Hu2018-05-121-1/+3
| | | | | | | | | An LDAP sign-in request results in a different request parameter than a standard GitLab sign-in. Since Warden doesn't pass us the user that was blocked, we first search for a `username` in the request parameters and then look for `user.login`. Closes #46307
* Block access to API & git when terms are enforcedBob Van Landuyt2018-05-101-0/+33
| | | | | | When terms are enforced, but the user has not accepted the terms access to the API & git is rejected with a message directing the user to the web app to accept the terms.
* Backport IdentityLinker#failed? from GroupSaml callback flowJames Edwards-Jones2018-05-041-0/+4
|
* Auth::User classes refactor adds should_save?James Edwards-Jones2018-04-233-14/+6
|
* Replace define_method with alias_method in Omniauth ControllersJames Edwards-Jones2018-04-231-1/+1
|
* Unify Saml::IdentityLinker and OAuth::IdentityLinkerJames Edwards-Jones2018-04-233-44/+28
|
* Show error on failed OAuth account linkJames Edwards-Jones2018-04-222-4/+20
|
* Refactor OmniauthCallbacksController to remove duplicationJames Edwards-Jones2018-04-226-2/+101
| | | | | Moves LDAP to its own controller with tests Provides path forward for implementing GroupSaml
* Add better LDAP connection handlingFrancisco Javier López2018-04-044-8/+47
|
* Fix LDAP login without user in DBHoratiu Eugen Vlad2018-03-273-17/+8
|
* Fix provider server URL used when listing repos to importrd-fix-github-url-when-listing-repositories-at-importingRubén Dávila2018-03-121-1/+1
| | | | Also use Gitlab::Auth::OAuth::Provider.config_for to access OmniAuth config
* [CE] Add Naming/FileName rule checking expected class/module per filenameGabriel Mazetto2018-03-081-1/+1
|
* Make oauth provider login genericHoratiu Eugen Vlad2018-03-055-8/+58
|
* Moved o_auth/saml/ldap modules under gitlab/authHoratiu Eugen Vlad2018-02-2815-0/+1542
|
* Allow token authentication on go-get requestDouwe Maan2018-02-231-0/+8
|
* Fixing request json mime typeFrancisco Javier López2018-01-151-3/+1
|
* Log and send a system hook if a blocked user fails to loginsh-log-when-user-blockedStan Hu2018-01-141-0/+36
| | | | Closes #41633
* Renaming AuthenticationException to AuthenticationErrormk-add-user-rate-limitsFrancisco Lopez2017-11-172-9/+9
|
* Changes after rebaseFrancisco Lopez2017-11-171-3/+5
|
* Removing OffenderFrancisco Lopez2017-11-171-1/+0
|
* Moved Exceptions to Gitlab::AuthFrancisco Lopez2017-11-172-19/+20
|
* Moving exceptions to UserAuthFindersFrancisco Lopez2017-11-171-7/+25
|
* Leaving atom? query to fix testsFrancisco Lopez2017-11-171-1/+1
|
* Change the rss url guard clauseFrancisco Lopez2017-11-171-1/+1
|
* Added some more commentsFrancisco Lopez2017-11-172-7/+5
|
* Removed method handle_return_valueFrancisco Lopez2017-11-171-13/+8
|
* Homogenising the type of the request handled by UserAuthFinder. Also tests fixedFrancisco Lopez2017-11-172-10/+11
|
* Applied some code review commentsFrancisco Lopez2017-11-172-25/+28
|
* Removing private tokenFrancisco Lopez2017-11-171-1/+15
|
* Some fixes after rebaseFrancisco Lopez2017-11-172-48/+34
|
* Updated refactor and pushing to see if test failsFrancisco Lopez2017-11-171-16/+18
|
* First refactorFrancisco Lopez2017-11-172-43/+96
|
* Refactor with ActionDispatch::RequestMichael Kozono2017-11-171-13/+11
|
* Fix OAuth API and RSS rate limitingMichael Kozono2017-11-171-0/+64
|
* Enable Layout/TrailingWhitespace cop and auto-correct offensesRobert Speicher2017-08-151-6/+6
|
* Support multiple Redis instances based on queue typePaul Charlton2017-07-111-1/+1
|
* Create read_registry scope with JWT authZ.J. van de Weg2017-06-051-0/+4
| | | | | | | | | | | | This is the first commit doing mainly 3 things: 1. create a new scope and allow users to use it 2. Have the JWTController respond correctly on this 3. Updates documentation to suggest usage of PATs There is one gotcha, there will be no support for impersonation tokens, as this seems not needed. Fixes gitlab-org/gitlab-ce#19219
* Remove unecessary defaults for uniq ip block, cleanup refactoring leftoversPawel Chojnacki2017-03-061-1/+2
|
* align schema.rb with upstream and fix rubocop warning about not freezing ↵Pawel Chojnacki2017-03-061-1/+1
| | | | mutable constants and empty error classes
* Remove unecessary calls to limit_user!, UniqueIps Middleware, and address MR ↵Pawel Chojnacki2017-03-062-31/+20
| | | | | | | | | | review - cleanup formating in haml - clarify time window is in seconds - cleanup straneous chunks in db/schema - rename count_uniqe_ips to update_and_return_ips_count - other
View Lorry Controller Status