delta/gitlab/gitlab-shell.git/bin/gitlab-shell, branch gitlab-shell-no-glid-argument gitlab.com: gitlab-org/gitlab-shell.git Remove mistaken support for `gitlab-shell user-123` 2018-09-28T08:50:43+00:00 Jacob Vosmaer jacob@gitlab.com 2018-09-28T08:50:43+00:00 05441b826b7dc39b1523123e00bf00ce497ef75d 






Harden gitlab-shell against arguments following the gl_id parameter in the command line
2018-08-09T17:43:36+00:00

Nick Thomas
nick@gitlab.com

2018-08-09T17:26:55+00:00

6e907f26475f16ad7d3e02aa64138e0fe35bb6b9












Fix two regressions in SSH certificate support
2018-08-08T19:07:50+00:00

Ævar Arnfjörð Bjarmason
avarab@gmail.com

2018-08-08T09:39:04+00:00

c4b5a076040a6f6156c26f66cdc47610fc267db2

Fix two regressions in my 2e8b670 ("Add support for SSH certificate
authentication", 2018-06-14) merged in gitlab-org/gitlab-shell!207.

This fixes the issue noted in gitlab-org/gitlab-shell#145 where the
command-line contains things other than the key/user/username, and
also a regression where SSH certificates are being used, and the
username presented in the key is unknown to GitLab.

In that case, we should log the user in as "Anonymous" (on an instance
that allows public access), but because of how the error checking
around api.discover() was implemented we ended up erroring out
instead.





Fix two regressions in my 2e8b670 ("Add support for SSH certificate
authentication", 2018-06-14) merged in gitlab-org/gitlab-shell!207.

This fixes the issue noted in gitlab-org/gitlab-shell#145 where the
command-line contains things other than the key/user/username, and
also a regression where SSH certificates are being used, and the
username presented in the key is unknown to GitLab.

In that case, we should log the user in as "Anonymous" (on an instance
that allows public access), but because of how the error checking
around api.discover() was implemented we ended up erroring out
instead.







Add support for SSH certificate authentication
2018-07-26T10:35:55+00:00

Ævar Arnfjörð Bjarmason
avarab@gmail.com

2018-06-14T13:54:38+00:00

2e8b67027067761034f36dadb3c2208ce66d2552

This along with the code submitted to gitlab-ce in the
gitlab-org/gitlab-ce! MR implements SSH certificate
authentication. See the docs added to gitlab-ce for why and how to
enable this. This, along with that MR, closes
gitlab-org/gitlab-ce#3457

Implementation notes:

 - Because it's easy to do, and because an earlier nascent version of
   this would pass user-ID to gitlab-shell, that's now supported, even
   though the SSH certificate authentication uses username-USERNAME.

 - The astute reader will notice that not all the API calls in
   gitlab-ce's lib/api/internal.rb support a "username" argument, some
   only support "user_id".

   There's a few reasons for this:

     a) For this to be efficient, I am bending over backwards to avoid
        extra API calls when using SSH certificates.

        Therefore the /allowed API call will now return a "user id" to
        us if we're allowed to proceed further. This is then fed to
        existing APIs that would only be called after a successful
        call to /allowed.

     b) Not all of the git-shell codepaths go through
        /internal/allowed, or ever deal with a repository, e.g. the
        argument-less "Welcome to GitLab", and
        /internal/2fa_recovery_codes. These need to use
        /internal/discover to figure out details about the user, so
        support looking that up by username.

     c) Once we have the "user id", the GL_ID gets passed down to
        e.g. user-authored hooks. I don't want to have those all break
        by having to handle a third GL_ID mode of "username" in
        addition to the current "key id" and "user id".





This along with the code submitted to gitlab-ce in the
gitlab-org/gitlab-ce! MR implements SSH certificate
authentication. See the docs added to gitlab-ce for why and how to
enable this. This, along with that MR, closes
gitlab-org/gitlab-ce#3457

Implementation notes:

 - Because it's easy to do, and because an earlier nascent version of
   this would pass user-ID to gitlab-shell, that's now supported, even
   though the SSH certificate authentication uses username-USERNAME.

 - The astute reader will notice that not all the API calls in
   gitlab-ce's lib/api/internal.rb support a "username" argument, some
   only support "user_id".

   There's a few reasons for this:

     a) For this to be efficient, I am bending over backwards to avoid
        extra API calls when using SSH certificates.

        Therefore the /allowed API call will now return a "user id" to
        us if we're allowed to proceed further. This is then fed to
        existing APIs that would only be called after a successful
        call to /allowed.

     b) Not all of the git-shell codepaths go through
        /internal/allowed, or ever deal with a repository, e.g. the
        argument-less "Welcome to GitLab", and
        /internal/2fa_recovery_codes. These need to use
        /internal/discover to figure out details about the user, so
        support looking that up by username.

     c) Once we have the "user id", the GL_ID gets passed down to
        e.g. user-authored hooks. I don't want to have those all break
        by having to handle a third GL_ID mode of "username" in
        addition to the current "key id" and "user id".







Revert "Merge branch 'sh-disable-rubygems' into 'master'"
2017-07-05T15:13:10+00:00

Stan Hu
stanhu@gmail.com

2017-07-05T15:13:10+00:00

0b502be3314c0fb620e39d2f8f69f49d41d81cb2

This reverts commit a18c90128e4d3eeae1233b1bc3c3998afd223c0d, reversing
changes made to 0a64624152735766c428d1532e434dd0bf5a9748.





This reverts commit a18c90128e4d3eeae1233b1bc3c3998afd223c0d, reversing
changes made to 0a64624152735766c428d1532e434dd0bf5a9748.







Disable RubyGems to increase performance
2017-07-03T22:55:08+00:00

Stan Hu
stanhu@gmail.com

2017-07-03T22:55:08+00:00

0944ebab55c536dce1f0a5decba251e1414e3de0

By default, RubyGems is enabled, which causes the Ruby interpreter
to load 600+ additional files at startup when gitlab-shell is
designed not to use any external gems.





By default, RubyGems is enabled, which causes the Ruby interpreter
to load 600+ additional files at startup when gitlab-shell is
designed not to use any external gems.







More ENV.delete
2016-07-20T12:41:10+00:00

Jacob Vosmaer
jacob@gitlab.com

2016-07-20T12:41:10+00:00

bc815c5b48a78dfa9117c4b2d85472645364afb3












Limit availability of SSH_ORIGINAL_COMMAND
2015-11-25T16:53:31+00:00

Jacob Vosmaer
contact@jacobvosmaer.nl

2015-11-25T16:53:31+00:00

712daa411a2ab3d0add9d9e4a5b36ca81b53f674

Hoping this makes it more obvious when code touches the very
unsafe contents of this variable.





Hoping this makes it more obvious when code touches the very
unsafe contents of this variable.







GitlabShell doesn't need to set GL_ID at all.
2015-04-06T11:10:10+00:00

Douwe Maan
douwe@gitlab.com

2015-04-06T10:42:10+00:00

b5757b7489672f61bb4ea770accaac1cb38e9ffd












Write GitlabShell error to stderr.
2015-04-06T11:08:51+00:00

Douwe Maan
douwe@gitlab.com

2015-04-06T10:30:21+00:00

f64e5d4a075479846f2e18bb34b84eb26d180f57