Age | Commit message (Collapse) | Author | |
---|---|---|---|
2018-08-01 | Support multiple scopes when using authing container registry scopes | Kamil Trzciński | |
2017-11-23 | Allow password authentication to be disabled entirely | Markus Koller | |
2017-10-20 | Refactor `have_http_status` into `have_gitlab_http_status` in the specs | Jacopo | |
2017-08-22 | Hide read_registry scope when registry is disabled on instance | Robin Bobbitt | |
2017-07-13 | Fixes needed when GitLab sign-in is not enabled | Robin Bobbitt | |
When sign-in is disabled: - skip password expiration checks - prevent password reset requests - don’t show Password tab in User Settings - don’t allow login with username/password for Git over HTTP requests - render 404 on requests to Profiles::PasswordsController | |||
2017-06-14 | Correct RSpec/SingleLineHook cop offenses | Robert Speicher | |
2017-06-08 | Instruct user to use a personal access token for Git over HTTP | Robin Bobbitt | |
If internal auth is disabled and LDAP is not configured on the instance, present the user with a message to create a personal access token if his Git over HTTP auth attempt fails. | |||
2017-06-06 | Fix test failures | Z.J. van de Weg | |
2017-06-05 | Create read_registry scope with JWT auth | Z.J. van de Weg | |
This is the first commit doing mainly 3 things: 1. create a new scope and allow users to use it 2. Have the JWTController respond correctly on this 3. Updates documentation to suggest usage of PATs There is one gotcha, there will be no support for impersonation tokens, as this seems not needed. Fixes gitlab-org/gitlab-ce#19219 | |||
2016-11-09 | Merge branch 'unauthenticated-container-registry-access' into 'security' | Alejandro Rodriguez | |
Restore unauthenticated access to public container registries Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/24284 See merge request !2025 Signed-off-by: Rémy Coutable <remy@rymai.me> | |||
2016-09-27 | Be nice to Docker Clients talking to JWT/auth | Kamil Trzcinski | |
2016-09-16 | Added builds_spec and git_http_specs | Kamil Trzcinski | |
2016-09-15 | Fix specs after merging LFS changes | Kamil Trzcinski | |
2016-09-15 | Fix existing authorization specs | Kamil Trzcinski | |
2016-09-01 | Project tools visibility level | Felipe Artur | |
2016-06-27 | Use HTTP matchers if possible | Z.J. van de Weg | |
2016-06-10 | Improve Gitlab::Auth method names | Jacob Vosmaer | |
Auth.find was a very generic name for a very specific method. Auth.find_in_gitlab_or_ldap was inaccurate in GitLab EE where it also looks in Kerberos. | |||
2016-06-06 | Fix tests | Jacob Vosmaer | |
2016-05-23 | Fix the CI login to Container Registry (the gitlab-ci-token user) | Kamil Trzcinski | |
2016-05-15 | Update JwtController specs | Kamil Trzcinski | |
2016-05-15 | Added specs for JwtController | Kamil Trzcinski | |