Age | Commit message (Collapse) | Author |
|
|
|
Release v1.3.0
See merge request gitlab-org/gitlab-pages!119
|
|
|
|
Allow the maximum connection concurrency to be set
See merge request gitlab-org/gitlab-pages!117
|
|
|
|
Update Prometheus vendoring
See merge request gitlab-org/gitlab-pages!116
|
|
Update client_golang and common vendoring to latest release
* Improves text rendering performance.
* Pin to v0.9.x release.
|
|
Fix goimports
See merge request gitlab-org/gitlab-pages!118
|
|
|
|
|
|
|
|
The make verify task no longer works on Go 1.8, so split it out into a
separate job, run on go1.11. Also run the tests themselves on go1.11 as
we're here.
|
|
|
|
Fix version string not showing properly
Closes #140
See merge request gitlab-org/gitlab-pages!115
|
|
|
|
Due to a typo, the output of `gitlab-pages -version` was always `dev` instead
of the actual version. The variable name is VERSION, not Version.
Closes https://gitlab.com/gitlab-org/gitlab-pages/issues/140
|
|
|
|
Resolve "404 serving projects with capital letters"
Closes #170
See merge request gitlab-org/gitlab-pages!114
|
|
When loading domains map from disk we lowercase the project name,
this patch will lowercase it also when checking incoming HTTP requests
against the configuration map.
|
|
|
|
Release GitLab Pages v1.2.0
Closes #169
See merge request gitlab-org/gitlab-pages!113
|
|
|
|
Make GitLab pages support access control
This change adds support for access controlled pages by configuration
provided from GitLab to the `config.json`. When project is not public
and access control is enabled for it, pages will require user to
authenticate. This is done by redirecting user to GitLab authorize
endpoint. If project visiblity is public, then access will not be checked.
Pages will store the access token in a session cookie. When access token
is invalid the authentication will be done again.
This work is related to the feature request gitlab-ce#33422, check also
MR gitlab-ce!18589 and omnibus-gitlab!2583.
## Changes
* New fields in the `config.json`
* Auth package for handling OAuth and checking access to a project when necessary
* Test for auth and also acceptance tests
See merge request gitlab-org/gitlab-pages!94
|
|
|
|
invalid comment and fixed one else case.
|
|
|
|
|
|
Stop serving shadowed namespace project files
Closes #167
See merge request gitlab-org/gitlab-pages!111
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Release GitLab Pages v1.1.0
Closes #166
See merge request gitlab-org/gitlab-pages!110
|
|
CHANGELOG has already been updated.
|
|
|
|
Fix HTTP to HTTPS redirection not working for default domains
Closes #162
See merge request gitlab-org/gitlab-pages!106
|
|
If a default domain is in use, the group domain will be passed into the
IsHTTPSOnly() call, but this will always return false because the HTTPS-only
flag can only be determined by looking at the HTTP request host rather than
the URL.
For example, for the project https://gitlab.com/tanukitalks/tanukitalks.gitlab.io,
this is what happened previously:
1. For a project in the default domain (e.g. `gitlab.io`), GitLab Pages loads
`config.json` and sees the group is `tanukitalks` with the project name
`tanuitalks.gitlab.io`. It stores the HTTPS-only flag inside the project
config.
2. Note that for projects in the default domain, the `domainConfig` is
empty. This makes sense because there is no domain configuration specified
since the default domain is being used, and we need to redirect on a
project-by-project basis.
3. User requests https://tanukitalks.gitlab.io.
4. GitLab Pages looks up `tanukitalks.gitlab.io`, and it returns the domain
`tanukitalks` with an empty `domainConfig` and project `tanukitalks.gitlab.io`.
5. Since there is no `domainConfig`, `IsHTTPSOnly` attempts to resolve the
project from the URL.
6. However, since the URL is using the default domain, the path is `/`, which
doesn't resolve to any project.
In the new behavior, we check the hostname of the request to see if it matches
any project before trying to parse the URL.
Closes #162
|
|
Log duplicate domain names
Closes #160
See merge request gitlab-org/gitlab-pages!107
|
|
This will help make it easier to track stale `config.json` files on disk.
Closes https://gitlab.com/gitlab-org/gitlab-pages/issues/160
|
|
Abort domain scan if a failure is encountered
Closes gitlab-com/infrastructure#4749
See merge request gitlab-org/gitlab-pages!102
|
|
|
|
|