diff options
| author | GitLab Release Tools Bot <robert+release-tools@gitlab.com> | 2019-09-27 21:15:56 +0300 |
|---|---|---|
| committer | GitLab Release Tools Bot <robert+release-tools@gitlab.com> | 2019-09-27 21:15:56 +0300 |
| commit | 38c4c867f6b7ccf4064772e82ee7b09f91c55310 (patch) | |
| tree | 3ff639f88e86ac5e147e90a42addb546458bc8ee /changelogs | |
| parent | dff4e3c70a826cd2762a8e5388006aa27202f337 (diff) | |
| parent | 3bdde494888b6a19f19b9eab6303475b1bf44ee2 (diff) | |
Merge branch 'security-sarcila-verify-saml-request-origin' into 'master'
Check that SAML identity linking validates the origin of the request
See merge request gitlab/gitlabhq!3337
Diffstat (limited to 'changelogs')
| -rw-r--r-- | changelogs/unreleased/security-sarcila-verify-saml-request-origin.yml | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/changelogs/unreleased/security-sarcila-verify-saml-request-origin.yml b/changelogs/unreleased/security-sarcila-verify-saml-request-origin.yml new file mode 100644 index 00000000000..9022bc8a26f --- /dev/null +++ b/changelogs/unreleased/security-sarcila-verify-saml-request-origin.yml @@ -0,0 +1,5 @@ +--- +title: Prevent GitLab accounts takeover if SAML is configured +merge_request: +author: +type: security |