Age | Commit message (Collapse) | Author | |
---|---|---|---|
2019-08-07 | Compress images with pngquant | Achilleas Pipinellis | |
2019-08-07 | Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/65499 | Russell Dickenson | |
2019-08-02 | Refactor SystemHookUrlValidator and specs | George Koltsov | |
Simplify SystemHookUrlValidator to inherit from PublicUrlValidator Refactor specs to move out shared examples to be used in both system hooks and public url validators. | |||
2019-08-02 | Update security/webhooks.md doc page & specs | George Koltsov | |
Updating security/webhooks.md to match new behaviour as well as drying up few specs to extract shared examples | |||
2019-08-02 | Add rate limit docs | Michael Kozono | |
2019-07-19 | Update root default email address to current value | astrachan | |
2019-07-16 | Clean-up some confusing info from security docs | Achilleas Pipinellis | |
2019-07-15 | Fix whitespace in user, and misc, docs | Marcel Amirault | |
Many code blocks are 4spaced, and they render in GitLab without coloring as a result, even though they are fenced with a language label. If in a list, other items woll render as being in a code block too, even if not meant to. This fixes all these issues, and cleans up minor whitespace issues in /user, /security, /ssh and /migrate_ci_to_ce docs. | |||
2019-07-15 | Remove extra blank lines from docs | Marcel Amirault | |
Removing extra blank lines in docs that serve no purpose, as well as some --- lines that also are not needed. | |||
2019-07-15 | Remove trailing whitespace in docs | Marcel Amirault | |
Remove unneeded trailing whitespace in lines in /security /workflow /user docs | |||
2019-06-28 | Support CIDR notation in IP rate limiter | Stan Hu | |
This will make it possible to whitelist multiple IP addresses (e.g. 192.168.0.1/24). | |||
2019-06-13 | refactor: apply "require 2FA" to all subgroup and ancestor group members, ↵ | Roger Meier | |
when changing | |||
2019-06-09 | Update links in information_exclusivity.md | Mike Lewis | |
2019-06-07 | Corrected links to use absolute path names | Matt Penna | |
2019-06-07 | Added links to pertinent GitLab docs | Matt Penna | |
Clarified who can push to a protected branch | |||
2019-06-07 | Apply suggestion to doc/security/webhooks.md | Matt Penna | |
2019-06-07 | Apply suggestion to doc/security/rack_attack.md | Matt Penna | |
2019-06-07 | Updated security docs | Matt Penna | |
Changes include: - Added front matter - Added Troubleshooting header - Shorted long lines - Corrected typos and improved clarity throughout | |||
2019-06-07 | Various edits to security documentation | Matt Penna | |
Edits to conform with CE epic 1280 SSOT standards, other improvements | |||
2019-06-07 | Add type to frontmatter | Achilleas Pipinellis | |
2019-06-05 | Clarify and improve 2FA configuration information | Evan Read | |
2019-05-24 | Changes RackAttack logger to use structured logs | Mayra Cabrera | |
Creates a new filename to register auth logs. This change should allow SRE's queries to make better queries through logging infrastructure. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/54528 | |||
2019-02-22 | Docs: add details about restricted SSH keys | Tristan Williams | |
2019-02-12 | Docs: Misc small fixes to docs | Marcel Amirault | |
2019-01-24 | Fix most instances of bare URLs in markdown | Evan Read | |
2019-01-14 | Merge branch 'patch-31' into 'master' | Rémy Coutable | |
GitLab 11.4.3 "Outbound requests" setting path See merge request gitlab-org/gitlab-ce!22898 | |||
2019-01-08 | Make unordered lists conform to styleguide | Evan Read | |
- Also makes other minor Markdown fixes that were near the main fixes. | |||
2018-12-11 | Update doc/security/rack-attack.md | Matt Rice | |
2018-12-04 | fix: update the link to the new address. | Salman Mohammadi | |
this change eliminates the need to redirect the page. | |||
2018-11-20 | Precisions about the times specified in gitlab.rb for Rack Attack | Illan RUL-DA CUNHA | |
2018-11-13 | Resolve Markdown ordered lists not conforming to styleguide | Evan Read | |
2018-11-08 | GitLab 11.4.3 "Outbound requests" setting path | Thunk | |
2018-09-25 | Correct Gitlab to GitLab in docs | Marcel Amirault | |
2018-09-21 | Correct grammar (setup to set-up) in Docs | Marcel Amirault | |
2018-08-29 | Fix minor error in doc/security/user_email_confirmation.md | Yannick Binnenweg | |
Originally submitted at https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/3190. Signed-off-by: Rémy Coutable <remy@rymai.me> | |||
2018-08-29 | Add instructions to unlock an account | Aaron | |
Originally submitted at https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/6578. Signed-off-by: Rémy Coutable <remy@rymai.me> | |||
2018-08-27 | Compress all PNG images under doc/ | Achilleas Pipinellis | |
The pngquant tool was used https://pngquant.org, and particularly, the following command: /usr/bin/pngquant -f --skip-if-larger --ext .png --speed 1 image.png Before: 47584K After : 34924K | |||
2018-07-25 | Merge branch 'update-rack-attack-deprecation-note-in-docs' into 'master' | Douwe Maan | |
Adds rack attack disabled by default notice to documentation See merge request gitlab-org/gitlab-ce!20833 | |||
2018-07-25 | Adds rack attack disabled by default notice to documentation | Tiago Botelho | |
2018-07-25 | Fix Rack Attack documentation to reflect the feature being disabled by default | Tiago Botelho | |
2018-06-06 | doc | Mark Chao | |
2018-04-24 | Improve documentation of SSRF protection | Francisco Javier López | |
2018-01-23 | Update rack attack docs | Cindy Pallares 🦉 | |
2017-11-01 | Exclude comments from specific docs | Achilleas Pipinellis | |
2017-08-30 | More review comments | Nick Thomas | |
2017-08-30 | Address review comments | Nick Thomas | |
2017-08-30 | Rework the permissions model for SSH key restrictions | Nick Thomas | |
`allowed_key_types` is removed and the `minimum_<type>_bits` fields are renamed to `<tech>_key_restriction`. A special sentinel value (`-1`) signifies that the key type is disabled. This also feeds through to the UI - checkboxes per key type are out, inline selection of "forbidden" and "allowed" (i.e., no restrictions) are in. As with the previous model, unknown key types are disallowed, even if the underlying ssh daemon happens to support them. The defaults have also been changed from the lowest known bit size to "no restriction". So if someone does happen to have a 768-bit RSA key, it will continue to work on upgrade, at least until the administrator restricts them. | |||
2017-08-30 | Add settings for minimum key strength and allowed key type | Nick Thomas | |
This is an amalgamation of: * Cory Hinshaw: Initial implementation !5552 * Rémy Coutable: Updates !9350 * Nick Thomas: Resolve conflicts and add ED25519 support !13712 | |||
2017-04-06 | Support 2FA requirement per-group | Markus Koller | |
2017-02-03 | Move webhooks to new a location under Integrations | Achilleas Pipinellis | |