kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/lib
History
Jacob Vosmaer 614ca3ec65 Remove LDAP::Access#find_user 
This method existed to allow LDAP users to take over existing GitLab
accounts if the part before the '@' of their LDAP email attribute
matched the username of an existing GitLab user. I propose to disable
this behavior in order to prevent unintended GitLab account takeovers.

After this change it is still possible to take over an existing GitLab
account with your LDAP credentials, as long as the GitLab account email
address matches the LDAP user email address.
2014-08-29 15:38:05 +02:00
..
api Fix tests after #7526 2014-08-20 20:34:55 +02:00
assets move assets from lib directory to vendor 2012-05-29 17:56:48 +05:00
backup Backup wiki repo even if the main repo is empty 2014-05-08 22:50:48 +02:00
gitlab Remove LDAP::Access#find_user 2014-08-29 15:38:05 +02:00
redcarpet/render Add feature spec. 2014-05-26 20:43:58 +02:00
support Merge pull request #7378 from jojosch/nginx-ssl-redirect 2014-08-28 16:54:36 +03:00
tasks Write authorized_keys in tmp/tests during tests 2014-08-26 11:33:26 +02:00
email_validator.rb Test for the apostrophe in the email 2014-06-11 13:36:30 +02:00
event_filter.rb Constants in Events looks good now 2013-02-13 15:48:16 +04:00
extracts_path.rb Improve code according to new gitlab_git 2014-02-04 14:46:15 +02:00
file_size_validator.rb Fully embrace Ruby 1.9 hash syntax 2012-08-10 18:25:15 -04:00
gt_one_coercion.rb diff unfold 2014-08-14 15:48:14 +04:00
static_model.rb Fixed styles, ProjectHook specs etc 2013-01-05 00:35:38 +02:00
unfold_form.rb diff unfold 2014-08-14 15:48:14 +04:00