kotovalexarian-likes-gitlab
/
gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/config/initializers/7_omniauth.rb

20 lines
726 B
Ruby
Raw Normal View History

Only enable LDAP providers if LDAP is enabled
2014-10-15 07:53:16 +00:00
if Gitlab::LDAP::Config.enabled?
module OmniAuth::Strategies
server = Gitlab.config.ldap.servers.values.first
Prevent redeclaration of LDAP strategy
2014-10-17 16:03:34 +00:00
klass = server['provider_class']
const_set(klass, Class.new(LDAP)) unless klass == 'LDAP'
Only enable LDAP providers if LDAP is enabled
2014-10-15 07:53:16 +00:00
end
Move dynamic omniauth declarations to initializer
2014-10-14 07:22:59 +00:00
Only enable LDAP providers if LDAP is enabled
2014-10-15 07:53:16 +00:00
OmniauthCallbacksController.class_eval do
server = Gitlab.config.ldap.servers.values.first
alias_method server['provider_name'], :ldap
end
Rubocop: no trailing newlines
2015-02-03 05:53:27 +00:00
end
Protect OmniAuth request phase against CSRF.
2015-04-24 15:03:18 +00:00
OmniAuth.config.allowed_request_methods = [:post]
Add an option to automatically sign-in with an Omniauth provider without showing the GitLab sign-in page This is useful when integrating with existing SSO environments and we want to use a single Omniauth provider for all user authentication.
2015-05-27 15:40:21 +00:00
#In case of auto sign-in, the GET method is used (users don't get to click on a button)
OmniAuth.config.allowed_request_methods << :get if Gitlab.config.omniauth.auto_sign_in_with_provider.present?
Protect OmniAuth request phase against CSRF.
2015-04-24 15:03:18 +00:00
OmniAuth.config.before_request_phase do |env|
OmniAuth::RequestForgeryProtection.new(env).call
end