delta/gitlab/gitlab-ce.git/config/initializers/warden.rb, branch docs/split-autodevops-variable-tablegitlab.com: gitlab-org/gitlab-ce.git
Guard against a login attempt with invalid CSRF token2018-09-26T19:20:43+00:00Stan Hustanhu@gmail.com2018-09-26T17:53:57+00:00027c3264adbb24a5398241a9eecc218150943cd1
If a user logs in with a bad CSRF token, the Warden before_logout
hook will be called with no valid user. This would lead to odd
Error 500 messages with a backtrace.
Addresses part of #50857
If a user logs in with a bad CSRF token, the Warden before_logout
hook will be called with no valid user. This would lead to odd
Error 500 messages with a backtrace.
Addresses part of #50857
Simplify the check of reduntant user logout events2018-08-03T11:06:38+00:00Grzegorz Bizongrzesiek.bizon@gmail.com2018-08-03T11:06:38+00:000dd0dc2367453f4c63965053a88851332d7c462d
Do not skip recording session destruction events2018-08-03T11:00:14+00:00Grzegorz Bizongrzesiek.bizon@gmail.com2018-08-03T11:00:14+00:00ef28641d03acf08f286632569983f5ec2eda5871
Improve blocked user tracking code readability2018-08-03T10:58:00+00:00Grzegorz Bizongrzesiek.bizon@gmail.com2018-08-03T10:58:00+00:0098e9f52cf4e02562055f9106a155184e7b55012f
Do not implicitly authenticate user during session creation2018-08-01T14:57:59+00:00Grzegorz Bizongrzesiek.bizon@gmail.com2018-08-01T14:57:59+00:004eb9d6a96fd74e57ebc7c0c57f10db7e54d29205
Simplify blocked user tracking during authentication2018-08-01T13:56:44+00:00Grzegorz Bizongrzesiek.bizon@gmail.com2018-08-01T13:56:44+00:002b05562c5b3a092c94b54095c2daa76a764a0227
Improve blocked user tracking and fire some events only once2018-08-01T12:23:06+00:00Grzegorz Bizongrzesiek.bizon@gmail.com2018-08-01T12:23:06+00:004bcf72e734fbafe99ec603d34819b8ab68bf390c