summaryrefslogtreecommitdiff
path: root/spec/features/login_spec.rb
Commit message (Collapse)AuthorAgeFilesLines
* Replaces `tag: true` into `:tag` in the specsJacopo2017-10-071-4/+4
| | | | | | Replaces all the explicit include metadata syntax in the specs (tag: true) into the implicit one (:tag). Added a cop to prevent future errors and handle autocorrection.
* Remove superfluous type defs in specsKeifer Furzland2017-07-271-1/+1
| | | | Signed-off-by: Rémy Coutable <remy@rymai.me>
* Support multiple Redis instances based on queue typePaul Charlton2017-07-111-2/+2
|
* Provide hint to create a personal access token for Git over HTTPRobin Bobbitt2017-06-261-22/+1
| | | | | | If internal auth is disabled and user is not an LDAP user, present the user with an alert to create a personal access token if he does not have one already.
* Enable Style/DotPosition Rubocop :cop:Grzegorz Bizon2017-06-211-2/+2
|
* Change `login_with` uses to `gitlab_sign_in`Robert Speicher2017-06-191-13/+13
| | | | Change single `login_via` use to `gitlab_sign_in_via`
* Correct RSpec/SingleLineHook cop offensesRobert Speicher2017-06-141-5/+7
|
* Add :redis keyword to some specs clear state of trackable attributesToon Claes2017-05-091-2/+2
| | | | | | | | | | | | | | | | | The specs that rely on a correct value of the trackable attributes, should include the `:redis` keyword in the spec to ensure the state is reset between various specs. The trackable attributes being: - sign_in_count : Increased every time a sign in is made (by form, openid, oauth) - current_sign_in_at : A timestamp updated when the user signs in - last_sign_in_at : Holds the timestamp of the previous sign in - current_sign_in_ip : The remote ip updated when the user sign in - last_sign_in_ip : Holds the remote ip of the previous sign in The limiting of writing trackable attributes was introduced in gitlab-org/gitlab-ce!11053.
* state the reason to the user for the required 2faAlexis Reigel2017-04-061-29/+102
|
* add a spec that the ghost user cannot log inhttp://jneen.net/2017-03-091-0/+12
|
* Don't perform Devise trackable updates on blocked User recordsrs-warden-blocked-usersRobert Speicher2017-02-101-0/+16
|
* Remove flash warning from login pagePadilla, Gerald2017-01-301-0/+5
|
* Fix rubocop build errorJacob Schatz2016-10-241-1/+1
|
* Use proper tense and spacing in login_specs.register-tabBryce Johnson2016-10-241-4/+6
|
* Test login tab/pane rendering in varying configurations.Bryce Johnson2016-10-241-0/+63
|
* Update filled in field for two_factor auth to use id.Bryce Johnson2016-10-151-1/+1
|
* fixes part1 of files to start using active tensetiagonbotelho2016-08-091-1/+1
|
* Remove provider path, replace with dynamic path.devise-deprecationsConnor Shea2016-08-031-1/+1
|
* Added a lot of stubbing to make sure OAUth requests are handled properly ↵Patricio Cano2016-07-071-1/+18
| | | | with 2FA
* Change order of stubbing to fix testsPatricio Cano2016-07-041-1/+1
|
* Added tests for 2FA check on OAuth requestPatricio Cano2016-07-041-5/+21
|
* Implement authentication (login) using a U2F device.Timothy Andrew2016-06-061-13/+13
| | | | | | - Move the `authenticate_with_two_factor` method from `ApplicationController` to the `AuthenticatesWithTwoFactor` module, where it should be.
* Merge branch 'upgrade-devise-two-factor' into 'master' Robert Speicher2016-06-021-1/+1
|\ | | | | | | | | | | | | | | | | Upgrade devise, devise-two-factor, and attr_encrypted Devise 4 includes support for Rails 5, working towards #14286. devise-async doesn't support Devise 4.0 and in 4.1 the bug that was blocking using Devise's built-in ActiveJob integration was fixed. So devise-async is removed. devise-two-factor 3.0.0 is required for Devise 4 support. attr_encrypted and encryptor are optional but recommended upgrades for devise-two-factor 3.0.0. The mode and algorithm will need to be changed in order to update to attr_encrypted 4.x in the future. See merge request !4216
| * Upgrade attr_encrypted and encryptorConnor Shea2016-05-301-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | attr_encrypted (1.3.4 => 3.0.1) Changelog: https://github.com/attr-encrypted/attr_encrypted/blob/master/CHANGELOG.m d attr_encrypted 2.x included a vulnerability, so that major version is skipped. 3.x requires that the algorithm and mode used by each encrypted attribute is specified explicitly. `nil` is no longer a valid value for the encrypted_value_iv field, so it’s changed to a randomly generated string.
* | Pass the "Remember me" value to the 2FA token formrs-remember-me-2faRobert Speicher2016-05-301-1/+7
|/ | | | | | | | Prior, if a user had 2FA enabled and checked the "Remember me" field, the setting was ignored because the OTP input was on a new form and the value was never passed. Closes #18000
* Fix a spec that was failing due to !3483Rémy Coutable2016-05-041-1/+1
| | | | | | | Spec were skipped in this MR so that tests started to fail in master instead of in this MR! Signed-off-by: Rémy Coutable <remy@rymai.me>
* Allow the initial admin to set a passwordrs-no-default-credentialsRobert Speicher2016-03-041-0/+26
| | | | Closes #1980
* Update wording for 2FA requirement noticers-2fa-requirement-wordingRobert Speicher2016-01-231-5/+5
|
* specs for forced two-factor authentication and grace periodGabriel Mazetto2015-12-241-0/+52
| | | | simplified code and fixed stuffs
* Fix spec broken by updated Devise translationsRobert Speicher2015-10-011-1/+1
|
* Add `feature` tag to feature specsRobert Speicher2015-07-061-1/+1
| | | | | Not to be confused with the RSpec `type: :feature` tag, this tag is used by the `spec:feature` Rake task for filtering/grouping specs.
* Handle password reset for users with 2FA enabled2faRobert Speicher2015-05-111-2/+2
|
* Prevent "You are already signed in." error message upon 2FA loginRobert Speicher2015-05-091-1/+18
|
* Generate 10 2FA backup codes instead of the default of 5Robert Speicher2015-05-091-2/+2
|
* Add :two_factor trait to User factoryRobert Speicher2015-05-091-8/+4
|
* Fix 2FA backup code removalRobert Speicher2015-05-091-7/+5
|
* Refactor SessionsControllerRobert Speicher2015-05-091-0/+8
| | | | | Also adds test case for providing an invalid 2FA code and then a valid one without re-entering username and password.
* Make two-factor login work and add a feature specRobert Speicher2015-05-091-0/+82
View Lorry Controller Status