summaryrefslogtreecommitdiff
path: root/spec/lib/gitlab/auth_spec.rb
Commit message (Collapse)AuthorAgeFilesLines
* Add latest changes from gitlab-org/gitlab@13-0-stable-eeGitLab Bot2020-05-201-0/+8
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-04-141-44/+73
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-04-081-5/+5
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-03-281-3/+15
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-03-261-0/+41
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-03-121-5/+5
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-02-201-2/+1
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-02-061-2/+16
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2020-01-081-0/+15
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-12-121-0/+1
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-12-041-1/+1
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-12-031-42/+62
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-10-101-0/+6
|
* Add latest changes from gitlab-org/gitlab@masterGitLab Bot2019-09-281-51/+17
|
* If user can push to docker then it can delete tooGiorgenes Gelatti2019-09-031-1/+2
| | | | | | | Extends the permission of $CI_REGISTRY_USER to allow them to delete tags in addition to just pushing. https://gitlab.com/gitlab-org/gitlab-ce/issues/40096
* Exempt `jwt/auth` for user `gitlab-ci-token` from rate limitingMarius Bobin2019-08-231-2/+2
|
* Add frozen_string_literal to spec/lib (part 1)Thong Kuah2019-07-261-0/+2
| | | | | Using the sed script from https://gitlab.com/gitlab-org/gitlab-ce/issues/59758
* Add tests for when deploy token usernames are not uniqueKrasimir Angelov2019-07-171-0/+64
| | | | | Ensure correct behaviour when deploy tokens have the same username or deploy token and user have the same username.
* Add username to deploy tokensKrasimir Angelov2019-07-021-0/+9
| | | | | | | | | This new attribute is optional and used when set instead of the default format `gitlab+deploy-token-#{id}`. Empty usernames will be saved as null in the database. Related to https://gitlab.com/gitlab-org/gitlab-ce/issues/50228.
* Added write_repository scope for personal access tokenHoratiu Eugen Vlad2019-04-151-16/+59
|
* Fix #44332 - Add support for profile and emailGotenXiao2019-02-061-1/+1
|
* Enable the Layout/ExtraSpacing cop56392-enable-the-layout-extraspacing-copRémy Coutable2019-01-241-1/+1
| | | | Signed-off-by: Rémy Coutable <remy@rymai.me>
* Use proper auth_scope for deploy tokenKamil Trzciński2018-04-071-2/+2
|
* Increase test suite around deploy tokens behaviorMayra Cabrera2018-04-061-43/+47
| | | | Also, fixes broken specs
* Fixes broken schema and minor changesMayra Cabrera2018-04-061-1/+1
|
* Include ProjectDeployTokensMayra Cabrera2018-04-061-9/+2
| | | | | | Also: - Changes scopes from serializer to use boolean columns - Fixes broken specs
* Support Deploy Tokens properly without hacking abilitiesKamil Trzciński2018-04-061-3/+3
|
* Addreses backend review suggestionsMayra Cabrera2018-04-061-5/+5
| | | | | | - Remove extra method for authorize_admin_project - Ensure project presence - Rename 'read_repo' to 'read_repository' to be more verbose
* Removes logic from Jwt and handle different scenarios on Gitlab::AuthMayra Cabrera2018-04-061-52/+99
| | | | | | | - When using 'read_repo' password and project are sent, so we used both of them to fetch for the token - When using 'read_registry' only the password is sent, so we only use that for fetching the token
* Implement read_registry for DeployTokensMayra Cabrera2018-04-061-8/+29
|
* Implement 'read_repo' for DeployTokensMayra Cabrera2018-04-061-3/+54
| | | | This will allow to download a repo using the token from the DeployToken
* Fix LDAP login without user in DBHoratiu Eugen Vlad2018-03-271-4/+10
|
* Moved o_auth/saml/ldap modules under gitlab/authHoratiu Eugen Vlad2018-02-281-4/+4
|
* Merge branch 'sh-migrate-can-push-to-deploy-keys-projects-10-3' into ↵Douwe Maan2018-01-161-3/+3
| | | | | | | | | | | | 'security-10-3' [10.3] Migrate `can_push` column from `keys` to `deploy_keys_project` See merge request gitlab/gitlabhq!2276 (cherry picked from commit f6ca52d31bac350a23938e0aebf717c767b4710c) 1f2bd3c0 Backport to 10.3
* Merge branch 'dm-fix-registry-with-sudo-token' into 'master'Sean McGivern2017-11-241-1/+1
|\ | | | | | | | | | | | | Fix pulling and pushing using a personal access token with the sudo scope Closes #40466 See merge request gitlab-org/gitlab-ce!15571
| * Fix pulling and pushing using a personal access token with the sudo scopedm-fix-registry-with-sudo-tokenDouwe Maan2017-11-231-1/+1
| |
* | Allow password authentication to be disabled entirelyMarkus Koller2017-11-231-1/+21
|/
* Fix Error 500 when pushing LFS objects with a write deploy keyStan Hu2017-11-081-2/+26
|
* Add sudo API scopeDouwe Maan2017-11-021-2/+2
|
* Consistently use PersonalAccessToken instead of PersonalTokenDouwe Maan2017-11-021-5/+5
|
* Clean up read_registry scope changesRobin Bobbitt2017-09-181-5/+5
| | | | Closes #37789
* Merge branch 'hide-read-registry-scope-when-registry-disabled' into 'master'Kamil Trzciński2017-09-121-6/+32
|\ | | | | | | | | Hide read_registry scope when registry is disabled on instance See merge request !13314
| * Hide read_registry scope when registry is disabled on instanceRobin Bobbitt2017-08-211-6/+32
| |
* | Rollsback changes made to signing_enabled.Tiago Botelho2017-09-011-10/+0
|/
* Merge remote-tracking branch 'upstream/master' into add-star-for-action-scopeLin Jen-Shin2017-08-071-1/+1
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * upstream/master: (184 commits) Fix issues with pdf-js dependencies fix missing changelog entries for security release on 2017-01-23 Update top bar issues icon Fix pipeline icon in contextual nav for projects Since mysql is not a priority anymore, test it less Fix order of CI lint ace editor loading Add container registry and spam logs icons Fix different Markdown styles Backport to CE for: Make new dropdown dividers full width Fix spec Fix spec Fix spec Bump GITLAB_SHELL_VERSION and GITALY_VERSION to support unhiding refs Add changelog Install yarn via apt in update guides Use long curl options fix Add a spec for concurrent process Remove monkey-patched Array.prototype.first() and last() methods ...
| * Change all `:empty_project` to `:project`rs-empty_project-defaultRobert Speicher2017-08-021-1/+1
| |
* | Cleanup tests and add admin_container_image toLin Jen-Shin2017-08-021-1/+2
|/ | | | | full_authentication_abilities. This is fine because we're going to check with can?(..) anyway
* Remove superfluous lib: true, type: redis, service: true, models: true, ↵Rémy Coutable2017-07-271-1/+1
| | | | | | services: true, no_db: true, api: true Signed-off-by: Rémy Coutable <remy@rymai.me>
* Fixes needed when GitLab sign-in is not enabledRobin Bobbitt2017-07-131-1/+11
| | | | | | | | | When sign-in is disabled: - skip password expiration checks - prevent password reset requests - don’t show Password tab in User Settings - don’t allow login with username/password for Git over HTTP requests - render 404 on requests to Profiles::PasswordsController
* Instruct user to use a personal access token for Git over HTTPRobin Bobbitt2017-06-071-0/+6
| | | | | | If internal auth is disabled and LDAP is not configured on the instance, present the user with a message to create a personal access token if his Git over HTTP auth attempt fails.
View Lorry Controller Status