| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2020-09-19 | Add latest changes from gitlab-org/gitlab@13-4-stable-ee | GitLab Bot | |
| 2020-09-01 | Add latest changes from gitlab-org/security/gitlab@13-3-stable-ee | GitLab Bot | |
| 2020-08-29 | Add latest changes from gitlab-org/security/gitlab@13-3-stable-ee | GitLab Bot | |
| 2020-08-20 | Add latest changes from gitlab-org/gitlab@13-3-stable-ee | GitLab Bot | |
| 2020-07-29 | Add latest changes from gitlab-org/gitlab@13-2-stable-ee | GitLab Bot | |
| 2020-07-20 | Add latest changes from gitlab-org/gitlab@13-2-stable-ee | GitLab Bot | |
| 2020-06-18 | Add latest changes from gitlab-org/gitlab@13-1-stable-ee | GitLab Bot | |
| 2020-05-20 | Add latest changes from gitlab-org/gitlab@13-0-stable-ee | GitLab Bot | |
| 2020-04-03 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-04-01 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-03-27 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-03-19 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-03-13 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-03-12 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-03-02 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-02-05 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-02-04 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-02-04 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-01-27 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-01-22 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2020-01-09 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2019-12-17 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2019-12-12 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2019-12-11 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2019-12-07 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2019-12-06 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2019-12-04 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2019-11-11 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2019-11-01 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2019-10-10 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2019-09-30 | Validate that SAML requests are originated from gitlab | Sebastian Arcila Valenzuela | |
| If the request wasn't initiated by gitlab we shouldn't add the new identity to the user, and instead show that we weren't able to link the identity to the user. This should fix: https://gitlab.com/gitlab-org/gitlab-ce/issues/56509 | |||
| 2019-09-26 | Add latest changes from gitlab-org/gitlab@master | GitLab Bot | |
| 2019-09-10 | Enable serving static objects from an external storage | Ahmad Sherif | |
| It consists of two parts: 1. Redirecting users to the configured external storage 1. Allowing the external storage to request the static object(s) on behalf of the user by means of specific tokens Part of https://gitlab.com/gitlab-com/gl-infra/infrastructure/issues/6829 | |||
| 2019-08-27 | Update docs and comments about saml with allow_bypass_two_factor | dodocat | |
| allow_bypass_two_factor configration dose not work with saml provider | |||
| 2019-07-26 | Fix cannot modify frozen string | Thong Kuah | |
| Note that Performance/UnfreezeString recommends unary plus over "".dup, but unary plus has lower precedence so we have to use parenthesis | |||
| 2019-07-26 | Add frozen_string_literal to spec/lib (part 1) | Thong Kuah | |
| Using the sed script from https://gitlab.com/gitlab-org/gitlab-ce/issues/59758 | |||
| 2019-07-25 | Frozen string cannot change encoding | Thong Kuah | |
| This was shown in specs but surely this will be happening in application code as well if this method is passes a frozen string. We were also trying to force_encode a OmniAuth::AuthHash which had the very confusing behaviour of returning nil when it was sent a method that it did not define. Fix that by only force_encoding a String. | |||
| 2019-07-22 | OAuth2 support for GitLab personal access tokens | Steve Abrams | |
| PATs are accepted using the OAuth2 compliant header "Authorization: Bearer {token}" in order to allow for OAuth requests while 2FA is enabled. | |||
| 2019-06-28 | Support CIDR notation in IP rate limiter | Stan Hu | |
| This will make it possible to whitelist multiple IP addresses (e.g. 192.168.0.1/24). | |||
| 2019-03-25 | Backport 'Update user name upon LDAP sync' from EE | Rémy Coutable | |
| Signed-off-by: Rémy Coutable <remy@rymai.me> | |||
| 2019-03-04 | Allow raw `tls_options` to be passed in LDAP configuration | Drew Blessing | |
| We've previously exposed ca_file and ssl_version but there are many possible options that can be used inside tls_options. Instead of exposing individual ones, simply expose the entire hash so it can be passed in and we won't have to add things in the future. | |||
| 2019-01-24 | Enable the Layout/ExtraSpacing cop | Rémy Coutable | |
| Signed-off-by: Rémy Coutable <remy@rymai.me> | |||
| 2019-01-07 | Switch use of Rack::Request to ActionDispatch::Request | Stan Hu | |
| As mentioned in https://gitlab.com/gitlab-org/gitlab-ee/issues/9035#note_129093444, Rails 5 switched ActionDispatch::Request so that it no longer inherits Rack::Request directly. A middleware that uses Rack::Request to read the environment may see stale request parameters if another middleware modifies the environment via ActionDispatch::Request. To be safe, we should be using ActionDispatch::Request everywhere. | |||
| 2018-11-29 | Add config to disable impersonation | Imre Farkas | |
| Adds gitlab.impersonation_enabled config option defaulting to true to keep the current default behaviour. Only the act of impersonation is modified, impersonation token management is not affected. | |||
| 2018-11-29 | Merge branch 'security-fix-pat-web-access' into 'master' | Cindy Pallares | |
| [master] Resolve "Personal access token with only `read_user` scope can be used to authenticate any web request" See merge request gitlab/gitlabhq!2583 | |||
| 2018-11-21 | Eliminate duplicated words | Takuya Noguchi | |
| Signed-off-by: Takuya Noguchi <takninnovationresearch@gmail.com> | |||
| 2018-10-25 | saml/auth_hash: Allow 2FA bypass for SAML 2.0 responses | 115100 | |
| Closes gitlab-org/gitlab-ce/#53102. | |||
| 2018-09-21 | Correct Gitlab Capitalization in code files | Marcel Amirault | |
| 2018-08-23 | Backport LDAP changes to CE | Douglas Barbosa Alexandre | |
| 2018-08-22 | Fix broken Git over HTTP clones with LDAP users | Stan Hu | |
| Due to a regression in !20608, the LDAP authenticator was not being used unless OmniAuth was enabled. This change allows the LDAP provider to be used if it is configured regardless of the OmniAuth setting. Closes #50579 | |||
Welcome to mirror list, hosted at ThFree Co, Russian Federation.
 |
index : gitlab.com/gitlab-org/gitlab-foss.git | |
| Unnamed repository; edit this file 'description' to name the repository. | root |
| summaryrefslogtreecommitdiff |