kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
102780 commits 1 branch 0 tags 899 MiB
Commit graph

13 commits

Author SHA1 Message Date
Sebastian Arcila Valenzuela
3692e9f8a2
Validate that SAML requests are originated from gitlab 
If the request wasn't initiated by gitlab we shouldn't add the new
identity to the user, and instead show that we weren't able to link
the identity to the user.

This should fix: https://gitlab.com/gitlab-org/gitlab-ce/issues/56509
 2019-09-30 14:22:06 +02:00
GitLab Bot
b7dfe2ae40 Add latest changes from gitlab-org/gitlab@master 2019-09-13 13:26:31 +00:00
Andrew Newdigate
3288e1a874 Adds the Rubocop ReturnNil cop 
This style change enforces `return if ...` instead of
`return nil if ...` to save maintainers a few minor review points
 2019-03-06 17:51:56 +02:00
115100
2a8a4897ff
saml/auth_hash: Allow 2FA bypass for SAML 2.0 responses 
Closes gitlab-org/gitlab-ce/#53102.
 2018-10-25 12:08:07 +01:00
gfyoung
e166e5747c Enable some frozen string in lib/gitlab 
Enable frozen string for the following files:

* lib/gitlab/auth/**/*.rb
* lib/gitlab/badge/**/*.rb
* lib/gitlab/bare_repository_import/**/*.rb
* lib/gitlab/bitbucket_import/**/*.rb
* lib/gitlab/bitbucket_server_import/**/*.rb
* lib/gitlab/cache/**/*.rb
* lib/gitlab/checks/**/*.rb

Partially addresses #47424.
 2018-10-13 02:31:31 -07:00
Roger Rüttimann
2efe27ba18 Honor saml assurance level to allow 2FA bypassing 2018-06-25 15:32:03 +00:00
Rémy Coutable
37cd2b9b4d
Minimize CE/EE difference in Gitlab::Auth::Saml::User 
Signed-off-by: Rémy Coutable <remy@rymai.me>
 2018-05-18 16:30:53 +02:00
Rémy Coutable
0a581fcfa2
Minimize CE/EE difference in Gitlab::Auth::Saml::Config 
Signed-off-by: Rémy Coutable <remy@rymai.me>
 2018-05-18 16:30:53 +02:00
James Edwards-Jones
dd09a19ad6 Auth::User classes refactor adds should_save? 2018-04-23 16:24:56 +01:00
James Edwards-Jones
d3a8a07423 Unify Saml::IdentityLinker and OAuth::IdentityLinker 2018-04-23 13:53:32 +01:00
James Edwards-Jones
f10c999bca Refactor OmniauthCallbacksController to remove duplication 
Moves LDAP to its own controller with tests
Provides path forward for implementing GroupSaml
 2018-04-22 23:50:55 +01:00
Rubén Dávila
afe2c15e6b Fix provider server URL used when listing repos to import 
Also use Gitlab::Auth::OAuth::Provider.config_for to access OmniAuth config
 2018-03-12 16:01:43 -05:00
Horatiu Eugen Vlad
1ad5df49b1 Moved o_auth/saml/ldap modules under gitlab/auth 2018-02-28 16:53:02 +01:00