gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author
2017-10-07	Replaces `tag: true` into `:tag` in the specs	Jacopo
	Replaces all the explicit include metadata syntax in the specs (tag: true) into the implicit one (:tag). Added a cop to prevent future errors and handle autocorrection.
2017-07-27	Remove superfluous type defs in specs	Keifer Furzland
	Signed-off-by: Rémy Coutable <remy@rymai.me>
2017-07-11	Support multiple Redis instances based on queue type	Paul Charlton

2017-06-26	Provide hint to create a personal access token for Git over HTTP	Robin Bobbitt
	If internal auth is disabled and user is not an LDAP user, present the user with an alert to create a personal access token if he does not have one already.
2017-06-21	Enable Style/DotPosition Rubocop :cop:	Grzegorz Bizon

2017-06-20	Change `login_with` uses to `gitlab_sign_in`	Robert Speicher
	Change single `login_via` use to `gitlab_sign_in_via`
2017-06-14	Correct RSpec/SingleLineHook cop offenses	Robert Speicher

2017-05-09	Add :redis keyword to some specs clear state of trackable attributes	Toon Claes
	The specs that rely on a correct value of the trackable attributes, should include the `:redis` keyword in the spec to ensure the state is reset between various specs. The trackable attributes being: - sign_in_count : Increased every time a sign in is made (by form, openid, oauth) - current_sign_in_at : A timestamp updated when the user signs in - last_sign_in_at : Holds the timestamp of the previous sign in - current_sign_in_ip : The remote ip updated when the user sign in - last_sign_in_ip : Holds the remote ip of the previous sign in The limiting of writing trackable attributes was introduced in gitlab-org/gitlab-ce!11053.
2017-04-06	state the reason to the user for the required 2fa	Alexis Reigel

2017-03-09	add a spec that the ghost user cannot log in	http://jneen.net/

2017-02-10	Don't perform Devise trackable updates on blocked User records	Robert Speicher

2017-01-31	Remove flash warning from login page	Padilla, Gerald

2016-10-25	Fix rubocop build error	Jacob Schatz

2016-10-24	Use proper tense and spacing in login_specs.	Bryce Johnson

2016-10-24	Test login tab/pane rendering in varying configurations.	Bryce Johnson

2016-10-15	Update filled in field for two_factor auth to use id.	Bryce Johnson

2016-08-09	fixes part1 of files to start using active tense	tiagonbotelho

2016-08-03	Remove provider path, replace with dynamic path.	Connor Shea

2016-07-08	Added a lot of stubbing to make sure OAUth requests are handled properly ↵	Patricio Cano
	with 2FA
2016-07-04	Change order of stubbing to fix tests	Patricio Cano

2016-07-04	Added tests for 2FA check on OAuth request	Patricio Cano

2016-06-06	Implement authentication (login) using a U2F device.	Timothy Andrew
	- Move the `authenticate_with_two_factor` method from `ApplicationController` to the `AuthenticatesWithTwoFactor` module, where it should be.
2016-06-02	Merge branch 'upgrade-devise-two-factor' into 'master'	Robert Speicher
	Upgrade devise, devise-two-factor, and attr_encrypted Devise 4 includes support for Rails 5, working towards #14286. devise-async doesn't support Devise 4.0 and in 4.1 the bug that was blocking using Devise's built-in ActiveJob integration was fixed. So devise-async is removed. devise-two-factor 3.0.0 is required for Devise 4 support. attr_encrypted and encryptor are optional but recommended upgrades for devise-two-factor 3.0.0. The mode and algorithm will need to be changed in order to update to attr_encrypted 4.x in the future. See merge request !4216
2016-05-31	Pass the "Remember me" value to the 2FA token form	Robert Speicher
	Prior, if a user had 2FA enabled and checked the "Remember me" field, the setting was ignored because the OTP input was on a new form and the value was never passed. Closes #18000
2016-05-30	Upgrade attr_encrypted and encryptor	Connor Shea
	attr_encrypted (1.3.4 => 3.0.1) Changelog: https://github.com/attr-encrypted/attr_encrypted/blob/master/CHANGELOG.m d attr_encrypted 2.x included a vulnerability, so that major version is skipped. 3.x requires that the algorithm and mode used by each encrypted attribute is specified explicitly. `nil` is no longer a valid value for the encrypted_value_iv field, so it’s changed to a randomly generated string.
2016-05-04	Fix a spec that was failing due to !3483	Rémy Coutable
	Spec were skipped in this MR so that tests started to fail in master instead of in this MR! Signed-off-by: Rémy Coutable <remy@rymai.me>
2016-03-05	Allow the initial admin to set a password	Robert Speicher
	Closes #1980
2016-01-24	Update wording for 2FA requirement notice	Robert Speicher

2015-12-25	specs for forced two-factor authentication and grace period	Gabriel Mazetto
	simplified code and fixed stuffs
2015-10-02	Fix spec broken by updated Devise translations	Robert Speicher

2015-07-07	Add `feature` tag to feature specs	Robert Speicher
	Not to be confused with the RSpec `type: :feature` tag, this tag is used by the `spec:feature` Rake task for filtering/grouping specs.
2015-05-11	Handle password reset for users with 2FA enabled	Robert Speicher

2015-05-10	Prevent "You are already signed in." error message upon 2FA login	Robert Speicher

2015-05-10	Generate 10 2FA backup codes instead of the default of 5	Robert Speicher

2015-05-10	Add :two_factor trait to User factory	Robert Speicher

2015-05-10	Fix 2FA backup code removal	Robert Speicher

2015-05-10	Refactor SessionsController	Robert Speicher
	Also adds test case for providing an invalid 2FA code and then a valid one without re-entering username and password.
2015-05-10	Make two-factor login work and add a feature spec	Robert Speicher