Commit graph

21 commits

Author SHA1 Message Date
Kamil Trzciński
34ec29b956 Support multiple scopes when using authing container registry scopes 2018-08-01 13:03:16 +02:00
Markus Koller
257fd57134 Allow password authentication to be disabled entirely 2017-11-23 13:16:14 +00:00
Jacopo
2f40dac352 Refactor have_http_status into have_gitlab_http_status in the specs 2017-10-20 10:13:18 +02:00
Robin Bobbitt
62ef67acc3 Hide read_registry scope when registry is disabled on instance 2017-08-21 18:13:32 -04:00
Robin Bobbitt
672a68d372 Fixes needed when GitLab sign-in is not enabled
When sign-in is disabled:
 - skip password expiration checks
 - prevent password reset requests
 - don’t show Password tab in User Settings
 - don’t allow login with username/password for Git over HTTP requests
 - render 404 on requests to Profiles::PasswordsController
2017-07-13 10:08:27 -04:00
Robert Speicher
a6ec5121f0 Correct RSpec/SingleLineHook cop offenses 2017-06-14 13:18:56 -05:00
Robin Bobbitt
cb5a5eb892 Instruct user to use a personal access token for Git over HTTP
If internal auth is disabled and LDAP is not configured on the instance,
present the user with a message to create a personal access token if his
Git over HTTP auth attempt fails.
2017-06-07 21:12:51 -04:00
Z.J. van de Weg
9fcc3e5982 Fix test failures 2017-06-06 16:19:15 +02:00
Z.J. van de Weg
0b81b5ace0 Create read_registry scope with JWT auth
This is the first commit doing mainly 3 things:
1. create a new scope and allow users to use it
2. Have the JWTController respond correctly on this
3. Updates documentation to suggest usage of PATs

There is one gotcha, there will be no support for impersonation tokens, as this
seems not needed.

Fixes gitlab-org/gitlab-ce#19219
2017-06-05 12:26:49 +02:00
Alejandro Rodriguez
32042ef56a
Merge branch 'unauthenticated-container-registry-access' into 'security'
Restore unauthenticated access to public container registries

Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/24284

See merge request !2025

Signed-off-by: Rémy Coutable <remy@rymai.me>
2016-11-09 12:28:29 +01:00
Kamil Trzcinski
137a801615 Be nice to Docker Clients talking to JWT/auth 2016-09-27 16:59:05 +02:00
Kamil Trzcinski
ac6412d076 Added builds_spec and git_http_specs 2016-09-15 23:27:01 +02:00
Kamil Trzcinski
5f45ddc545 Fix specs after merging LFS changes 2016-09-15 22:23:43 +02:00
Kamil Trzcinski
9d1ccd2ad3 Fix existing authorization specs 2016-09-15 13:49:11 +02:00
Felipe Artur
892dea6771 Project tools visibility level 2016-09-01 11:47:59 -03:00
Z.J. van de Weg
abca19da8b Use HTTP matchers if possible 2016-06-27 20:10:42 +02:00
Jacob Vosmaer
0e896ffe4e Improve Gitlab::Auth method names
Auth.find was a very generic name for a very specific method.
Auth.find_in_gitlab_or_ldap was inaccurate in GitLab EE where it also
looks in Kerberos.
2016-06-10 14:51:16 +02:00
Jacob Vosmaer
07f49626d0 Fix tests 2016-06-06 17:40:26 +02:00
Kamil Trzcinski
646018a40e Fix the CI login to Container Registry (the gitlab-ci-token user) 2016-05-23 00:34:51 +02:00
Kamil Trzcinski
7b88dca77e Update JwtController specs 2016-05-15 00:33:06 -05:00
Kamil Trzcinski
e8f7e5516b Added specs for JwtController 2016-05-14 19:45:48 -05:00