Commit graph

16 commits

Author SHA1 Message Date
GitLab Bot
aee8d27430 Add latest changes from gitlab-org/gitlab@master 2020-06-05 18:08:19 +00:00
Reuben Pereira
409126c891 Add docs for local requests whitelist
- Add documentation under security/webhooks since similar docs are
present there.
2019-08-08 16:54:52 +00:00
Achilleas Pipinellis
95145f3e3e Compress images with pngquant 2019-08-07 10:01:48 +00:00
George Koltsov
8abf920d1f Refactor SystemHookUrlValidator and specs
Simplify SystemHookUrlValidator to inherit from PublicUrlValidator
Refactor specs to move out shared examples to be used in both
system hooks and public url validators.
2019-08-02 15:39:18 +01:00
George Koltsov
ac7661924e Update security/webhooks.md doc page & specs
Updating security/webhooks.md to match new behaviour
as well as drying up few specs to extract shared
examples
2019-08-02 15:39:18 +01:00
Evan Read
d650c30837 Clarify and improve 2FA configuration information 2019-06-05 19:20:26 +00:00
Tristan Williams
5829bf8578 Docs: add details about restricted SSH keys 2019-02-22 16:55:43 +00:00
Achilleas Pipinellis
8dbcd11075
Compress all PNG images under doc/
The pngquant tool was used https://pngquant.org, and particularly, the
following command:

        /usr/bin/pngquant -f --skip-if-larger --ext .png --speed 1 image.png

Before: 47584K
After : 34924K
2018-08-27 15:52:03 +02:00
Francisco Javier López
6d3121bed3 Improve documentation of SSRF protection 2018-04-24 10:21:50 +00:00
Nick Thomas
29b40db589 More review comments 2017-08-30 21:20:00 +01:00
Nick Thomas
6847060266 Rework the permissions model for SSH key restrictions
`allowed_key_types` is removed and the `minimum_<type>_bits` fields are
renamed to `<tech>_key_restriction`. A special sentinel value (`-1`) signifies
that the key type is disabled.

This also feeds through to the UI - checkboxes per key type are out, inline
selection of "forbidden" and "allowed" (i.e., no restrictions) are in.

As with the previous model, unknown key types are disallowed, even if the
underlying ssh daemon happens to support them. The defaults have also been
changed from the lowest known bit size to "no restriction". So if someone
does happen to have a 768-bit RSA key, it will continue to work on upgrade, at
least until the administrator restricts them.
2017-08-30 20:50:44 +01:00
Nick Thomas
b0f982fbdf Add settings for minimum key strength and allowed key type
This is an amalgamation of:

* Cory Hinshaw: Initial implementation !5552
* Rémy Coutable: Updates !9350
* Nick Thomas: Resolve conflicts and add ED25519 support !13712
2017-08-30 20:50:44 +01:00
Markus Koller
a3430f011f Support 2FA requirement per-group 2017-04-06 10:01:13 +02:00
Achilleas Pipinellis
af1dabe805 Reduce size of images from 25MB to 13MB using pngquant
Took it from https://gitlab.com/gitlab-com/www-gitlab-com/merge_requests/3232

[ci skip]
2016-11-22 19:53:43 +01:00
Peter Dave Hello
9e6f99744e
optimize png images losslessly using zopflipng 2016-06-29 19:22:15 +08:00
Achilleas Pipinellis
dba2e9c318 Add image to 2fa security documentation
[ci skip]
2016-01-22 10:23:32 +01:00