6 files changed, 27 insertions, 23 deletions

diff --git a/lib/gitlab/auth/ldap/config.rb b/lib/gitlab/auth/ldap/config.rb
index 82c6411c712..9dafd59561a 100644
--- a/lib/gitlab/auth/ldap/config.rb
+++ b/lib/gitlab/auth/ldap/config.rb
@@ -7,8 +7,8 @@ module Gitlab
       class Config
         NET_LDAP_ENCRYPTION_METHOD = {
           simple_tls: :simple_tls,
-          start_tls:  :start_tls,
-          plain:      nil
+          start_tls: :start_tls,
+          plain: nil
         }.freeze
 
         attr_accessor :provider, :options
@@ -193,11 +193,11 @@ module Gitlab
 
         def default_attributes
           {
-            'username'    => %W(#{uid} uid sAMAccountName userid).uniq,
-            'email'       => %w(mail email userPrincipalName),
-            'name'        => 'cn',
-            'first_name'  => 'givenName',
-            'last_name'   => 'sn'
+            'username' => %W(#{uid} uid sAMAccountName userid).uniq,
+            'email' => %w(mail email userPrincipalName),
+            'name' => 'cn',
+            'first_name' => 'givenName',
+            'last_name' => 'sn'
           }
         end
 
diff --git a/lib/gitlab/auth/o_auth/auth_hash.rb b/lib/gitlab/auth/o_auth/auth_hash.rb
index 37f92792d2d..82a5aad360c 100644
--- a/lib/gitlab/auth/o_auth/auth_hash.rb
+++ b/lib/gitlab/auth/o_auth/auth_hash.rb
@@ -33,7 +33,7 @@ module Gitlab
         end
 
         def password
-          @password ||= Gitlab::Utils.force_utf8(::User.random_password.downcase)
+          @password ||= Gitlab::Utils.force_utf8(::User.random_password)
         end
 
         def location
@@ -103,7 +103,7 @@ module Gitlab
 
             {
               username: username,
-              email:    email
+              email: email
             }
           end
         end
diff --git a/lib/gitlab/auth/o_auth/provider.rb b/lib/gitlab/auth/o_auth/provider.rb
index 1a25ed10d81..2ce8677c8b7 100644
--- a/lib/gitlab/auth/o_auth/provider.rb
+++ b/lib/gitlab/auth/o_auth/provider.rb
@@ -5,14 +5,14 @@ module Gitlab
     module OAuth
       class Provider
         LABELS = {
-          "alicloud"                 => "AliCloud",
-          "dingtalk"                 => "DingTalk",
-          "github"                   => "GitHub",
-          "gitlab"                   => "GitLab.com",
-          "google_oauth2"            => "Google",
-          "azure_oauth2"             => "Azure AD",
+          "alicloud" => "AliCloud",
+          "dingtalk" => "DingTalk",
+          "github" => "GitHub",
+          "gitlab" => "GitLab.com",
+          "google_oauth2" => "Google",
+          "azure_oauth2" => "Azure AD",
           "azure_activedirectory_v2" => "Azure AD v2",
-          'atlassian_oauth2'         => 'Atlassian'
+          'atlassian_oauth2' => 'Atlassian'
         }.freeze
 
         def self.authentication(user, provider)
@@ -68,7 +68,9 @@ module Gitlab
               nil
             end
           else
-            provider = Gitlab.config.omniauth.providers.find { |provider| provider.name == name }
+            provider = Gitlab.config.omniauth.providers.find do |provider|
+              provider.name == name || (provider.name == 'openid_connect' && provider.args.name == name)
+            end
             merge_provider_args_with_defaults!(provider)
 
             provider
diff --git a/lib/gitlab/auth/o_auth/user.rb b/lib/gitlab/auth/o_auth/user.rb
index 7d9c4c0d7c1..1fed2b263da 100644
--- a/lib/gitlab/auth/o_auth/user.rb
+++ b/lib/gitlab/auth/o_auth/user.rb
@@ -240,11 +240,11 @@ module Gitlab
           valid_username = Uniquify.new.string(valid_username) { |s| !NamespacePathValidator.valid_path?(s) }
 
           {
-            name:                       name.strip.presence || valid_username,
-            username:                   valid_username,
-            email:                      email,
-            password:                   auth_hash.password,
-            password_confirmation:      auth_hash.password,
+            name: name.strip.presence || valid_username,
+            username: valid_username,
+            email: email,
+            password: auth_hash.password,
+            password_confirmation: auth_hash.password,
             password_automatically_set: true
           }
         end
diff --git a/lib/gitlab/auth/otp/strategies/forti_authenticator/manual_otp.rb b/lib/gitlab/auth/otp/strategies/forti_authenticator/manual_otp.rb
index 9cf1b2247a7..88ad48c3db7 100644
--- a/lib/gitlab/auth/otp/strategies/forti_authenticator/manual_otp.rb
+++ b/lib/gitlab/auth/otp/strategies/forti_authenticator/manual_otp.rb
@@ -34,7 +34,7 @@ module Gitlab
             end
 
             def body
-              { username:   user.username,
+              { username: user.username,
                 token_code: @otp_code }
             end
 
diff --git a/lib/gitlab/auth/user_access_denied_reason.rb b/lib/gitlab/auth/user_access_denied_reason.rb
index ff6dc7313bb..322dfa74d09 100644
--- a/lib/gitlab/auth/user_access_denied_reason.rb
+++ b/lib/gitlab/auth/user_access_denied_reason.rb
@@ -57,3 +57,5 @@ module Gitlab
     end
   end
 end
+
+Gitlab::Auth::UserAccessDeniedReason.prepend_mod