delta/gitlab/gitlab-ce.git/app/models/key.rb, branch replace_explore_projects.feature gitlab.com: gitlab-org/gitlab-ce.git Ensure key fingerprints are generated correctly when modified 2017-10-03T17:45:01+00:00 Nick Thomas nick@gitlab.com 2017-10-03T17:31:16+00:00 eaa1ce4fbed93cc1af95e96c3ff435ff0ec59863 






Stop using Sidekiq for updating Key#last_used_at
2017-09-20T12:24:14+00:00

Yorick Peterse
yorickpeterse@gmail.com

2017-09-20T12:21:15+00:00

b3566a01049cdfbde2a9221319601d8949c12a5a

This makes things simpler as no scheduling is involved. Further we
remove the need for running a SELECT + UPDATE just to get the key and
update it, whereas we only need an UPDATE when setting last_used_at
directly in a request.

The added service class takes care of updating Key#last_used_at without
using Sidekiq. Further it makes sure we only try to obtain a Redis lease
if we're confident that we actually need to do so, instead of always
obtaining it. We also make sure to _only_ update last_used_at instead of
also updating updated_at.

Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/36663





This makes things simpler as no scheduling is involved. Further we
remove the need for running a SELECT + UPDATE just to get the key and
update it, whereas we only need an UPDATE when setting last_used_at
directly in a request.

The added service class takes care of updating Key#last_used_at without
using Sidekiq. Further it makes sure we only try to obtain a Redis lease
if we're confident that we actually need to do so, instead of always
obtaining it. We also make sure to _only_ update last_used_at instead of
also updating updated_at.

Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/36663







created services for keys
2017-09-15T15:35:24+00:00

haseeb
haseebeqx@gmail.com

2017-09-15T15:35:24+00:00

cc2daa74d83c98dc05dd92f0950a122b46b83c96












Address review comments
2017-08-30T19:50:44+00:00

Nick Thomas
nick@gitlab.com

2017-08-28T20:33:35+00:00

b84ca08e351fc9238bef4e6b4bf74158d25d4f1d












Rework the permissions model for SSH key restrictions
2017-08-30T19:50:44+00:00

Nick Thomas
nick@gitlab.com

2017-08-25T13:08:48+00:00

6847060266792471c9c14518a5106e0f622cd6c5

`allowed_key_types` is removed and the `minimum_<type>_bits` fields are
renamed to `<tech>_key_restriction`. A special sentinel value (`-1`) signifies
that the key type is disabled.

This also feeds through to the UI - checkboxes per key type are out, inline
selection of "forbidden" and "allowed" (i.e., no restrictions) are in.

As with the previous model, unknown key types are disallowed, even if the
underlying ssh daemon happens to support them. The defaults have also been
changed from the lowest known bit size to "no restriction". So if someone
does happen to have a 768-bit RSA key, it will continue to work on upgrade, at
least until the administrator restricts them.





`allowed_key_types` is removed and the `minimum_<type>_bits` fields are
renamed to `<tech>_key_restriction`. A special sentinel value (`-1`) signifies
that the key type is disabled.

This also feeds through to the UI - checkboxes per key type are out, inline
selection of "forbidden" and "allowed" (i.e., no restrictions) are in.

As with the previous model, unknown key types are disallowed, even if the
underlying ssh daemon happens to support them. The defaults have also been
changed from the lowest known bit size to "no restriction". So if someone
does happen to have a 768-bit RSA key, it will continue to work on upgrade, at
least until the administrator restricts them.







Add settings for minimum key strength and allowed key type
2017-08-30T19:50:44+00:00

Nick Thomas
nick@gitlab.com

2017-08-21T10:30:03+00:00

b0f982fbdf69c292ab4530c0aaaf1ab42f4e7a01

This is an amalgamation of:

* Cory Hinshaw: Initial implementation !5552
* Rémy Coutable: Updates !9350
* Nick Thomas: Resolve conflicts and add ED25519 support !13712





This is an amalgamation of:

* Cory Hinshaw: Initial implementation !5552
* Rémy Coutable: Updates !9350
* Nick Thomas: Resolve conflicts and add ED25519 support !13712







fix #35133 strip new lines from ssh keys
2017-08-03T16:39:10+00:00

haseeb
haseebeqx@gmail.com

2017-08-03T16:39:10+00:00

ae99f05b059f613296c39dfa45c37dbcab40f4cd












Don’t schedule workers from inside transactions
2017-06-02T16:43:32+00:00

Douwe Maan
douwe@selenight.nl

2017-06-01T21:36:04+00:00

e4eac1fff1ba6d890f9f028dbfe47918b7876688












Enable the Style/TrailingCommaInArguments cop
2017-05-10T16:25:45+00:00

Rémy Coutable
remy@rymai.me

2017-05-03T11:27:17+00:00

3db37e05622aa3daa2be41bb9edc486cd2e54bcd

Use the EnforcedStyleForMultiline: no_comma option.

Signed-off-by: Rémy Coutable <remy@rymai.me>





Use the EnforcedStyleForMultiline: no_comma option.

Signed-off-by: Rémy Coutable <remy@rymai.me>







Record used SSH keys only once per day
2017-01-20T10:42:46+00:00

Adam Niedzielski
adamsunday@gmail.com

2017-01-20T10:42:46+00:00

8c41d5f5e13c321aa38d7636e608dc84371cfd5d

Use Gitlab::ExclusiveLease to make sure that we enqueue Sidekiq job
at most once per day for given key.





Use Gitlab::ExclusiveLease to make sure that we enqueue Sidekiq job
at most once per day for given key.