diff options
| author | Keith Pope <mute.pop3+gitlab@gmail.com> | 2016-08-02 06:56:23 +0100 | 
|---|---|---|
| committer | Keith Pope <mute.pop3+gitlab@gmail.com> | 2016-08-02 06:56:23 +0100 | 
| commit | 4768afbdbf85abbb5e2281c8855e7d27c07a581e (patch) | |
| tree | 457ef4821e5095080a797be1d2733d00ed6c2cf3 | |
| parent | e299504b798c053817f1c866649542ac0c779924 (diff) | |
| download | gitlab-ce-4768afbdbf85abbb5e2281c8855e7d27c07a581e.tar.gz | |
Add simple identifier to public SSH keys
| -rw-r--r-- | CHANGELOG | 1 | ||||
| -rw-r--r-- | app/models/key.rb | 5 | ||||
| -rw-r--r-- | spec/models/key_spec.rb | 5 | 
3 files changed, 7 insertions, 4 deletions
| diff --git a/CHANGELOG b/CHANGELOG index 9b66108c160..86bf05bfc08 100644 --- a/CHANGELOG +++ b/CHANGELOG @@ -18,6 +18,7 @@ v 8.11.0 (unreleased)    - Fix renaming repository when name contains invalid chararacters under project settings    - Optimize checking if a user has read access to a list of issues !5370    - Nokogiri's various parsing methods are now instrumented +  - Add simple identifier to public SSH keys (muteor)    - Add a way to send an email and create an issue based on private personal token. Find the email address from issues page. !3363    - Add build event color in HipChat messages (David Eisner)    - Make fork counter always clickable. !5463 (winniehell) diff --git a/app/models/key.rb b/app/models/key.rb index b9bc38a0436..568a60b8af3 100644 --- a/app/models/key.rb +++ b/app/models/key.rb @@ -26,8 +26,9 @@ class Key < ActiveRecord::Base    end    def publishable_key -    # Removes anything beyond the keytype and key itself -    self.key.split[0..1].join(' ') +    # Strip out the keys comment so we don't leak email addresses +    # Replace with simple ident of user_name (hostname) +    self.key.split[0..1].push("#{self.user_name} (#{Gitlab.config.gitlab.host})").join(' ')    end    # projects that has this key diff --git a/spec/models/key_spec.rb b/spec/models/key_spec.rb index 49cf3d8633a..a4d46ca84de 100644 --- a/spec/models/key_spec.rb +++ b/spec/models/key_spec.rb @@ -16,12 +16,13 @@ describe Key, models: true do    end    describe "Methods" do +    let(:user) { create(:user) }      it { is_expected.to respond_to :projects }      it { is_expected.to respond_to :publishable_key }      describe "#publishable_keys" do -      it 'strips all personal information' do -        expect(build(:key).publishable_key).not_to match(/dummy@gitlab/) +      it 'replaces SSH key comment with simple identifier of username + hostname' do +        expect(build(:key, user: user).publishable_key).to match(/#{Regexp.escape(user.name)} \(localhost\)/)        end      end    end | 
