kotovalexarian-likes-gitlab
/
gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/app/controllers/concerns/requires_whitelisted_monito...

30 lines
753 B
Ruby
Raw Normal View History

Remove the need to use health check token in favor of whitelist that will be used to control the access to monitoring resources
2017-07-03 15:09:34 +00:00
module RequiresWhitelistedMonitoringClient
extend ActiveSupport::Concern
included do
before_action :validate_ip_whitelisted!
end
private
def validate_ip_whitelisted!
Bring back healthcheck token access to monitoring resources, but mark this as deprecated
2017-07-03 20:41:33 +00:00
render_404 unless client_ip_whitelisted? || token_valid?
Remove the need to use health check token in favor of whitelist that will be used to control the access to monitoring resources
2017-07-03 15:09:34 +00:00
end
def client_ip_whitelisted?
Bring back healthcheck token access to monitoring resources, but mark this as deprecated
2017-07-03 20:41:33 +00:00
Settings.monitoring.ip_whitelist.any? { |e| e.include?(Gitlab::RequestContext.client_ip) }
end
def token_valid?
token = params[:token].presence || request.headers['TOKEN']
token.present? &&
ActiveSupport::SecurityUtils.variable_size_secure_compare(
token,
current_application_settings.health_check_access_token
)
Remove the need to use health check token in favor of whitelist that will be used to control the access to monitoring resources
2017-07-03 15:09:34 +00:00
end
def render_404
render file: Rails.root.join('public', '404'), layout: false, status: '404'
end
end