Rémy Coutable
|
4b3c1e56ae
|
Move LfsHelper to a new LfsRequest concern
Also create a new WorkhorseRequest concern
Signed-off-by: Rémy Coutable <remy@rymai.me>
|
2016-11-23 17:28:11 +01:00 |
|
Douwe Maan
|
b0bf92140f
|
Merge branch 'fix-unathorized-cloning' into 'security'
Ensure external users are not able to clone disabled repositories.
Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/23788
See merge request !2017
Signed-off-by: Rémy Coutable <remy@rymai.me>
|
2016-11-09 12:27:17 +01:00 |
|
Kamil Trzcinski
|
0672c5a92e
|
Post-merge improve of CI permissions
|
2016-09-20 15:41:41 +02:00 |
|
Kamil Trzcinski
|
795acf2e4e
|
Move logic to check ci? or lfs_deploy_token? to Gitlab::Auth::Result
|
2016-09-20 11:03:10 +02:00 |
|
Kamil Trzcinski
|
3c1bb3432b
|
Revert "Revert all changes introduced by https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/6043"
This reverts commit 6d43c95b70 .
|
2016-09-19 16:34:32 +02:00 |
|
Kamil Trzcinski
|
6d43c95b70
|
Revert all changes introduced by https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/6043
|
2016-09-19 13:45:28 +02:00 |
|
Kamil Trzcinski
|
2742f9fb98
|
Improve authentication_result usage
|
2016-09-16 16:07:21 +02:00 |
|
Kamil Trzcinski
|
f7ae37c1d0
|
Simplify checking of allowed abilities in git_http_client_controller
|
2016-09-16 13:34:05 +02:00 |
|
Kamil Trzcinski
|
e941365f3b
|
Rename capabilities to authentication_abilities
|
2016-09-16 11:12:21 +02:00 |
|
Kamil Trzcinski
|
ac6412d076
|
Added builds_spec and git_http_specs
|
2016-09-15 23:27:01 +02:00 |
|
Kamil Trzcinski
|
83b643a014
|
Merge remote-tracking branch 'origin/lfs-support-for-ssh' into per-build-token
# Conflicts:
# app/controllers/projects/git_http_client_controller.rb
# app/helpers/lfs_helper.rb
# lib/gitlab/auth.rb
# spec/requests/lfs_http_spec.rb
|
2016-09-15 21:16:38 +02:00 |
|
Patricio Cano
|
be09bcf074
|
Refactored authentication code to make it a bit clearer, added test for wrong SSH key.
|
2016-09-15 12:21:00 -05:00 |
|
Patricio Cano
|
de24075ea5
|
Further refactoring of authentication code, and code style fixes.
|
2016-09-15 12:21:00 -05:00 |
|
Patricio Cano
|
71aff7f6a3
|
Use special characters for lfs+deploy-key to prevent a someone from creating a user with this username, and method name refactoring.
|
2016-09-15 12:21:00 -05:00 |
|
Patricio Cano
|
c144db2935
|
Better authentication handling, syntax fixes and better actor handling for LFS Tokens
|
2016-09-15 12:21:00 -05:00 |
|
Patricio Cano
|
cb85cf1f0a
|
Refactor LFS token logic to use a Redis key instead of a DB field, making it a 1 use only token.
|
2016-09-15 12:21:00 -05:00 |
|
Patricio Cano
|
e40e3fdc82
|
Added LFS support to SSH
- Required on the GitLab Rails side is mostly authentication and API related.
|
2016-09-15 12:21:00 -05:00 |
|
Kamil Trzcinski
|
548169cfb5
|
Fix most of specs
|
2016-09-15 15:40:53 +02:00 |
|
Kamil Trzcinski
|
9d1ccd2ad3
|
Fix existing authorization specs
|
2016-09-15 13:49:11 +02:00 |
|
Kamil Trzcinski
|
571226f166
|
Make result to return project and capabilities granted
|
2016-09-13 15:27:05 +02:00 |
|
Kamil Trzcinski
|
505dc808b3
|
Use a permissions of user to access all dependent projects from CI jobs (this also includes a container images, and in future LFS files)
|
2016-09-13 13:30:26 +02:00 |
|
Jacob Vosmaer
|
c87540ed46
|
Verify JWT messages from gitlab-workhorse
|
2016-09-05 15:05:31 +02:00 |
|
Patricio Cano
|
2f86860a6d
|
Refactor find_for_git_client method to not use assignment in conditionals and syntax fixes.
|
2016-08-17 17:21:18 -05:00 |
|
Patricio Cano
|
5f5d8a8e09
|
Moved 2FA check to auth.rb and cleaned up the flow authenticate_user
|
2016-08-16 11:19:00 -05:00 |
|
Patricio Cano
|
f971026ad3
|
Added better information about the personal tokens
|
2016-08-16 11:19:00 -05:00 |
|
Patricio Cano
|
0f37721b60
|
2FA check is now done in the main GitHTTPClientController
|
2016-08-16 11:19:00 -05:00 |
|
Jacob Vosmaer
|
0d9752446d
|
Add LFS controllers
|
2016-07-22 17:54:04 +02:00 |
|