Commit graph

19 commits

Author SHA1 Message Date
Markus Koller
904b6dd083
Don't hash user ID in OIDC subject claim 2018-06-28 15:31:47 +02:00
Robert Speicher
6d165c740c Make all uses of fixture_file_upload use relative paths 2018-06-07 09:54:41 -05:00
Roger Rüttimann
a827f6764a add values to OpenID configuration test, not only checking for issuer key 2018-05-07 10:33:35 +02:00
Bob Van Landuyt
0f593b1c57 Define custom base controller for Doorkeeper
Since we only need the `can?` view helpers there, it's better to
include those in a separate controller.

If we inherit from `ApplicationController` we also need to deal with
authentication, that needs to be done in some, but not all doorkeeper controllers.
2018-04-30 11:40:51 +02:00
Rémy Coutable
566be168cf
Get rid of hard-coded user/project/group names that could clash with DB sequences
Signed-off-by: Rémy Coutable <remy@rymai.me>
2018-02-26 13:17:05 +01:00
Rémy Coutable
539b3a3532
Fix a too strict array-matching expectation
Signed-off-by: Rémy Coutable <remy@rymai.me>
2018-02-14 14:37:49 +01:00
Hassan Zamani
583ef9458c
Add groups to OpenID Connect claims 2018-02-08 13:22:41 +01:00
Bob Van Landuyt
a37427f614 Adjust openid_connect_spec to use raise_error
Using the `raise_error`-matcher instead of `throw_symbol` makes sure
our after blocks get called in the test suite.
2017-11-16 12:40:45 +01:00
Jacopo
2f40dac352 Refactor have_http_status into have_gitlab_http_status in the specs 2017-10-20 10:13:18 +02:00
Bob Van Landuyt
458f3cf9b0 Update specs for new upload path 2017-07-18 15:38:54 +02:00
Paul Charlton
cb3b4a15e6 Support multiple Redis instances based on queue type 2017-07-11 03:35:47 +00:00
DJ Mountney
1d1363e2bb Bring in security changes from the 9.2.5 release
Ran:
 - git format-patch v9.2.2..v9.2.5 --stdout > patchfile.patch
 - git checkout -b 9-2-5-security-patch origin/v9.2.2
 - git apply patchfile.patch
 - git commit
 - [Got the sha ref for the commit]
 - git checkout -b upstream-9-2-security master
 - git cherry-pick <SHA of the patchfile commit>
 - [Resolved conflicts]
 - git cherry-pick --continue
2017-06-07 21:16:20 -07:00
Rémy Coutable
3db37e0562 Enable the Style/TrailingCommaInArguments cop
Use the EnforcedStyleForMultiline: no_comma option.

Signed-off-by: Rémy Coutable <remy@rymai.me>
2017-05-10 18:25:45 +02:00
Rémy Coutable
d40e1f547e Enable the Style/TrailingCommaInLiteral cop
Use the EnforcedStyleForMultiline: no_comma option.

Signed-off-by: Rémy Coutable <remy@rymai.me>
2017-05-10 18:25:45 +02:00
Toon Claes
b550de51b9 Revert "Fix OpenID spec failure that assumed current_sign_in_at would be set"
This reverts commit 73f448e589.
2017-05-09 22:57:01 +02:00
Toon Claes
ab7c90331f Add :redis keyword to some specs clear state of trackable attributes
The specs that rely on a correct value of the trackable attributes, should
include the `:redis` keyword in the spec to ensure the state is reset between
various specs.

The trackable attributes being:

- sign_in_count      : Increased every time a sign in is made (by form, openid, oauth)
- current_sign_in_at : A timestamp updated when the user signs in
- last_sign_in_at    : Holds the timestamp of the previous sign in
- current_sign_in_ip : The remote ip updated when the user sign in
- last_sign_in_ip    : Holds the remote ip of the previous sign in

The limiting of writing trackable attributes was introduced in
gitlab-org/gitlab-ce!11053.
2017-05-09 20:58:15 +02:00
Stan Hu
73f448e589 Fix OpenID spec failure that assumed current_sign_in_at would be set
Due to 6a915d6f, the `current_sign_in_at` may not actually be set due
to an ExclusiveLease in other jobs. To fix this spec, manually set
the value in the setup.

Closes #32041
2017-05-09 10:44:43 -07:00
Jacopo
ff76adb547 Unnecessary "include WaitForAjax" and "include ApiHelpers"
Removed all the unnecessary include of `WaitForAjax` and `ApiHelpers` in the specs.
Removed unnecessary usage of `api:true`
2017-04-21 22:32:02 +02:00
Markus Koller
c498289048 Implement OpenID Connect identity provider 2017-03-07 14:54:35 +01:00