delta/gitlab/gitlab-ce.git/app/controllers/sessions_controller.rb, branch backport-gitlab-database gitlab.com: gitlab-org/gitlab-ce.git Disable SAML if OmniAuth is disabled 2018-07-20T10:54:46+00:00 Lin Jen-Shin godfat@godfat.org 2018-07-13T10:39:31+00:00 d0afab482f1157d0b41631cb4dbdfdfeadabb7c8 We also try to unify the way we setup OmniAuth, and how we check if it's enabled or not. 
We also try to unify the way we setup OmniAuth, and how we check
if it's enabled or not.
Updates from `rubocop -a` 2018-07-09T13:13:08+00:00 Lin Jen-Shin godfat@godfat.org 2018-07-02T10:43:06+00:00 4ee08b77bc5ae11553d59c182ea8292b77699115 






Add Prometheus metrics to track reCAPTCHA success/failures
2018-07-03T18:39:00+00:00

Stan Hu
stanhu@gmail.com

2018-06-22T06:25:00+00:00

7376ffc3a3f3d0f3bc294c4431370c5560c19a00












Show a reCAPTCHA on signin page if custom header is set
2018-06-21T22:37:34+00:00

Stan Hu
stanhu@gmail.com

2018-06-21T18:13:08+00:00

9b48d9f43f237ccf87594a944a00896996cadf55

This will only be displayed if `X-GitLab-Show-Login-Captcha` is set as an HTTP
header.





This will only be displayed if `X-GitLab-Show-Login-Captcha` is set as an HTTP
header.







Reuses `InternalRedirect` when possible
2018-05-04T11:54:43+00:00

Bob Van Landuyt
bob@vanlanduyt.co

2018-05-02T18:25:21+00:00

39916fdfeddfd75279d13fa976fdb07f3b9b0e26

`InternalRedirect` prevents Open redirect issues by only allowing
redirection to paths on the same host.

It cleans up any unwanted strings from the path that could point to
another host (fe. //about.gitlab.com/hello). While preserving the
querystring and fragment of the uri.

It is already used by:

- `TermsController`
- `ContinueParams`
  - `ImportsController`
  - `ForksController`
- `SessionsController`: Only for verifying the host in CE. EE allows
   redirecting to a different instance using Geo.





`InternalRedirect` prevents Open redirect issues by only allowing
redirection to paths on the same host.

It cleans up any unwanted strings from the path that could point to
another host (fe. //about.gitlab.com/hello). While preserving the
querystring and fragment of the uri.

It is already used by:

- `TermsController`
- `ContinueParams`
  - `ImportsController`
  - `ForksController`
- `SessionsController`: Only for verifying the host in CE. EE allows
   redirecting to a different instance using Geo.







Moved o_auth/saml/ldap modules under gitlab/auth
2018-02-28T15:53:02+00:00

Horatiu Eugen Vlad
horatiu@vlad.eu

2018-02-23T12:10:39+00:00

1ad5df49b1925f1865e99c3fd8576a762aea9cae












Adds Rubocop rule for line break around conditionals
2018-01-11T16:34:01+00:00

🙈  jacopo beschi 🙉
intrip@gmail.com

2018-01-11T16:34:01+00:00

729f05f0e3c4835c91e20ccd1ddb630eb7ef4379












Allow password authentication to be disabled entirely
2017-11-23T13:16:14+00:00

Markus Koller
markus-koller@gmx.ch

2017-11-23T13:16:14+00:00

257fd5713485a05460a9170190100643199a7e48












Create idea of read-only database
2017-10-06T20:37:40+00:00

Toon Claes
toon@iotcl.com

2017-09-19T07:44:58+00:00

d13669716ab0c31ce9039ae9f7f073e33a4dc40f

In GitLab EE, a GitLab instance can be read-only (e.g. when it's a Geo
secondary node). But in GitLab CE it also might be useful to have the
"read-only" idea around. So port it back to GitLab CE.

Also having the principle of read-only in GitLab CE would hopefully
lead to less errors introduced, doing write operations when there
aren't allowed for read-only calls.

Closes gitlab-org/gitlab-ce#37534.





In GitLab EE, a GitLab instance can be read-only (e.g. when it's a Geo
secondary node). But in GitLab CE it also might be useful to have the
"read-only" idea around. So port it back to GitLab CE.

Also having the principle of read-only in GitLab CE would hopefully
lead to less errors introduced, doing write operations when there
aren't allowed for read-only calls.

Closes gitlab-org/gitlab-ce#37534.







Minor backport from EE
2017-10-05T11:40:49+00:00

Valery Sizov
valery@gitlab.com

2017-10-05T11:40:49+00:00

d57fea4f2d394d879024b7a2ff3533f89f025e9f