Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Replaces `tag: true` into `:tag` in the specs | Jacopo | 2017-10-07 | 1 | -4/+4 |
| | | | | | | Replaces all the explicit include metadata syntax in the specs (tag: true) into the implicit one (:tag). Added a cop to prevent future errors and handle autocorrection. | ||||
* | Remove superfluous type defs in specs | Keifer Furzland | 2017-07-27 | 1 | -1/+1 |
| | | | | Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
* | Support multiple Redis instances based on queue type | Paul Charlton | 2017-07-11 | 1 | -2/+2 |
| | |||||
* | Provide hint to create a personal access token for Git over HTTP | Robin Bobbitt | 2017-06-26 | 1 | -22/+1 |
| | | | | | | If internal auth is disabled and user is not an LDAP user, present the user with an alert to create a personal access token if he does not have one already. | ||||
* | Enable Style/DotPosition Rubocop :cop: | Grzegorz Bizon | 2017-06-21 | 1 | -2/+2 |
| | |||||
* | Change `login_with` uses to `gitlab_sign_in` | Robert Speicher | 2017-06-19 | 1 | -13/+13 |
| | | | | Change single `login_via` use to `gitlab_sign_in_via` | ||||
* | Correct RSpec/SingleLineHook cop offenses | Robert Speicher | 2017-06-14 | 1 | -5/+7 |
| | |||||
* | Add :redis keyword to some specs clear state of trackable attributes | Toon Claes | 2017-05-09 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | | The specs that rely on a correct value of the trackable attributes, should include the `:redis` keyword in the spec to ensure the state is reset between various specs. The trackable attributes being: - sign_in_count : Increased every time a sign in is made (by form, openid, oauth) - current_sign_in_at : A timestamp updated when the user signs in - last_sign_in_at : Holds the timestamp of the previous sign in - current_sign_in_ip : The remote ip updated when the user sign in - last_sign_in_ip : Holds the remote ip of the previous sign in The limiting of writing trackable attributes was introduced in gitlab-org/gitlab-ce!11053. | ||||
* | state the reason to the user for the required 2fa | Alexis Reigel | 2017-04-06 | 1 | -29/+102 |
| | |||||
* | add a spec that the ghost user cannot log in | http://jneen.net/ | 2017-03-09 | 1 | -0/+12 |
| | |||||
* | Don't perform Devise trackable updates on blocked User recordsrs-warden-blocked-users | Robert Speicher | 2017-02-10 | 1 | -0/+16 |
| | |||||
* | Remove flash warning from login page | Padilla, Gerald | 2017-01-30 | 1 | -0/+5 |
| | |||||
* | Fix rubocop build error | Jacob Schatz | 2016-10-24 | 1 | -1/+1 |
| | |||||
* | Use proper tense and spacing in login_specs.register-tab | Bryce Johnson | 2016-10-24 | 1 | -4/+6 |
| | |||||
* | Test login tab/pane rendering in varying configurations. | Bryce Johnson | 2016-10-24 | 1 | -0/+63 |
| | |||||
* | Update filled in field for two_factor auth to use id. | Bryce Johnson | 2016-10-15 | 1 | -1/+1 |
| | |||||
* | fixes part1 of files to start using active tense | tiagonbotelho | 2016-08-09 | 1 | -1/+1 |
| | |||||
* | Remove provider path, replace with dynamic path.devise-deprecations | Connor Shea | 2016-08-03 | 1 | -1/+1 |
| | |||||
* | Added a lot of stubbing to make sure OAUth requests are handled properly ↵ | Patricio Cano | 2016-07-07 | 1 | -1/+18 |
| | | | | with 2FA | ||||
* | Change order of stubbing to fix tests | Patricio Cano | 2016-07-04 | 1 | -1/+1 |
| | |||||
* | Added tests for 2FA check on OAuth request | Patricio Cano | 2016-07-04 | 1 | -5/+21 |
| | |||||
* | Implement authentication (login) using a U2F device. | Timothy Andrew | 2016-06-06 | 1 | -13/+13 |
| | | | | | | - Move the `authenticate_with_two_factor` method from `ApplicationController` to the `AuthenticatesWithTwoFactor` module, where it should be. | ||||
* | Merge branch 'upgrade-devise-two-factor' into 'master' | Robert Speicher | 2016-06-02 | 1 | -1/+1 |
|\ | | | | | | | | | | | | | | | | | Upgrade devise, devise-two-factor, and attr_encrypted Devise 4 includes support for Rails 5, working towards #14286. devise-async doesn't support Devise 4.0 and in 4.1 the bug that was blocking using Devise's built-in ActiveJob integration was fixed. So devise-async is removed. devise-two-factor 3.0.0 is required for Devise 4 support. attr_encrypted and encryptor are optional but recommended upgrades for devise-two-factor 3.0.0. The mode and algorithm will need to be changed in order to update to attr_encrypted 4.x in the future. See merge request !4216 | ||||
| * | Upgrade attr_encrypted and encryptor | Connor Shea | 2016-05-30 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | attr_encrypted (1.3.4 => 3.0.1) Changelog: https://github.com/attr-encrypted/attr_encrypted/blob/master/CHANGELOG.m d attr_encrypted 2.x included a vulnerability, so that major version is skipped. 3.x requires that the algorithm and mode used by each encrypted attribute is specified explicitly. `nil` is no longer a valid value for the encrypted_value_iv field, so it’s changed to a randomly generated string. | ||||
* | | Pass the "Remember me" value to the 2FA token formrs-remember-me-2fa | Robert Speicher | 2016-05-30 | 1 | -1/+7 |
|/ | | | | | | | | Prior, if a user had 2FA enabled and checked the "Remember me" field, the setting was ignored because the OTP input was on a new form and the value was never passed. Closes #18000 | ||||
* | Fix a spec that was failing due to !3483 | Rémy Coutable | 2016-05-04 | 1 | -1/+1 |
| | | | | | | | Spec were skipped in this MR so that tests started to fail in master instead of in this MR! Signed-off-by: Rémy Coutable <remy@rymai.me> | ||||
* | Allow the initial admin to set a passwordrs-no-default-credentials | Robert Speicher | 2016-03-04 | 1 | -0/+26 |
| | | | | Closes #1980 | ||||
* | Update wording for 2FA requirement noticers-2fa-requirement-wording | Robert Speicher | 2016-01-23 | 1 | -5/+5 |
| | |||||
* | specs for forced two-factor authentication and grace period | Gabriel Mazetto | 2015-12-24 | 1 | -0/+52 |
| | | | | simplified code and fixed stuffs | ||||
* | Fix spec broken by updated Devise translations | Robert Speicher | 2015-10-01 | 1 | -1/+1 |
| | |||||
* | Add `feature` tag to feature specs | Robert Speicher | 2015-07-06 | 1 | -1/+1 |
| | | | | | Not to be confused with the RSpec `type: :feature` tag, this tag is used by the `spec:feature` Rake task for filtering/grouping specs. | ||||
* | Handle password reset for users with 2FA enabled2fa | Robert Speicher | 2015-05-11 | 1 | -2/+2 |
| | |||||
* | Prevent "You are already signed in." error message upon 2FA login | Robert Speicher | 2015-05-09 | 1 | -1/+18 |
| | |||||
* | Generate 10 2FA backup codes instead of the default of 5 | Robert Speicher | 2015-05-09 | 1 | -2/+2 |
| | |||||
* | Add :two_factor trait to User factory | Robert Speicher | 2015-05-09 | 1 | -8/+4 |
| | |||||
* | Fix 2FA backup code removal | Robert Speicher | 2015-05-09 | 1 | -7/+5 |
| | |||||
* | Refactor SessionsController | Robert Speicher | 2015-05-09 | 1 | -0/+8 |
| | | | | | Also adds test case for providing an invalid 2FA code and then a valid one without re-entering username and password. | ||||
* | Make two-factor login work and add a feature spec | Robert Speicher | 2015-05-09 | 1 | -0/+82 |