Find a file
Douwe Maan 8a245b80a5 Merge branch 'rack-request-trusted-proxies' into 'master'
Make Rack::Request use our trusted proxies when filtering IP addresses

## What does this MR do?

This allows us to control the trusted proxies while deployed in a private network.

## Are there points in the code the reviewer needs to double check?

If we want to limit what is impacted, we can do this specifically for the rack_attack request object.

## Why was this MR needed?

Normally Rack::Request will trust all private IPs as trusted proxies, which can cause problems if your users are connection on you network via private IP ranges.
    
Normally in a rails app this is handled by action_dispatch request, but rack_attack is specifically using the Rack::Request object instead.

## What are the relevant issue numbers?

Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/17550

## Does this MR meet the acceptance criteria?

- [x] [CHANGELOG](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/CHANGELOG) entry added
- [ ] ~~[Documentation created/updated](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/doc/development/doc_styleguide.md)~~
- [ ] ~~API support added~~
- Tests
  - [x] Added for this feature/bug
  - [x] All builds are passing
- [x] Conform by the [style guides](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/CONTRIBUTING.md#style-guides)
- [ ] Branch has no merge conflicts with `master` (if you do - rebase it please)
- [ ] [Squashed related commits together](https://git-scm.com/book/en/Git-Tools-Rewriting-History#Squashing-Commits)


\cc @stanhu

See merge request !4958
2016-06-30 15:37:16 +00:00
.github Address feedback about wording. 2016-06-09 11:25:47 -06:00
app Merge branch 'code_style_fixes' into 'master' 2016-06-30 15:29:09 +00:00
bin Use ENABLE_SPRING to use it by default 2016-06-17 16:54:55 +02:00
builds
config Merge branch 'rack-request-trusted-proxies' into 'master' 2016-06-30 15:37:16 +00:00
db Add Application Setting to configure default Repository Path for new projects 2016-06-29 23:35:00 -04:00
doc Add Application Setting to configure default Repository Path for new projects 2016-06-29 23:35:00 -04:00
docker Update Docker Hub links. 2016-05-07 13:29:24 +09:00
features Enable Style/SpaceAfterComma Rubocop cop 2016-06-29 15:23:44 +02:00
fixtures/emojis
generator_templates/active_record/migration Move generator templates to generator_templates/ 2016-05-19 14:58:35 -05:00
lib Merge branch 'rubocop/enable-unneeded-capital-w-cop' into 'master' 2016-06-30 15:21:53 +00:00
log
public optimize png images losslessly using zopflipng 2016-06-29 19:22:15 +08:00
rubocop Added RuboCop cops for checking DB migrations 2016-06-29 14:14:02 +02:00
scripts Cache only apt and ruby from vendor 2016-06-12 23:05:19 +02:00
shared Add .gitkeep 2016-05-17 09:41:47 -05:00
spec Merge branch 'rack-request-trusted-proxies' into 'master' 2016-06-30 15:37:16 +00:00
tmp
vendor Run rake gitlab:update_templates 2016-06-20 14:48:28 -05:00
.csscomb.json
.flayignore
.foreman
.gitattributes
.gitignore Use absolute paths wherever is possible for .gitignore entries. 2016-05-29 16:55:25 -05:00
.gitlab-ci.yml Merge branch 'use-git-depth' into 'master' 2016-06-28 13:46:16 +00:00
.hound.yml
.pkgr.yml
.rspec
.rubocop.yml Enable Style/UnneededCapitalW Rubocop cop 2016-06-30 13:31:52 +02:00
.ruby-version
.scss-lint.yml Merge branch 'scss-url-linters' into 'master' 2016-04-28 19:59:53 +00:00
.simplecov
.teatro.yml
.vagrant_enabled Cache project build count. Closes #18032 2016-06-02 11:10:57 -04:00
CHANGELOG Merge branch 'rack-request-trusted-proxies' into 'master' 2016-06-30 15:37:16 +00:00
config.ru
CONTRIBUTING.md Add License Finder information to contribution acceptance criteria. 2016-06-07 11:23:26 -06:00
doc_styleguide.md
docker-compose.yml
Gemfile Merge branch 'issue-18886' into 'master' 2016-06-30 12:56:59 +00:00
Gemfile.lock Merge branch 'issue-18886' into 'master' 2016-06-30 12:56:59 +00:00
GITLAB_SHELL_VERSION Refactor repository paths handling to allow multiple git mount points 2016-06-29 22:30:31 -04:00
GITLAB_WORKHORSE_VERSION Bump workhorse version 2016-06-28 22:10:53 +02:00
LICENSE
MAINTENANCE.md
PROCESS.md Merge branch 'patch-1' into 'master' 2016-04-26 14:45:58 +00:00
Procfile
Rakefile Load knapsack in Rakefile only when is bundled 2016-06-07 20:02:03 +02:00
README.md Remove Coveralls and Semaphore badges. [ci skip] 2016-05-31 09:16:04 -06:00
VERSION Time for 8.10.0-pre 2016-06-22 18:14:53 +03:00

GitLab

build status Code Climate

Canonical source

The source of GitLab Community Edition is hosted on GitLab.com and there are mirrors to make contributing as easy as possible.

Open source software to collaborate on code

To see how GitLab looks please see the features page on our website.

  • Manage Git repositories with fine grained access controls that keep your code secure
  • Perform code reviews and enhance collaboration with merge requests
  • Each project can also have an issue tracker and a wiki
  • Used by more than 100,000 organizations, GitLab is the most popular solution to manage Git repositories on-premises
  • Completely free and open source (MIT Expat license)
  • Powered by Ruby on Rails

Hiring

We're hiring developers, support people, and production engineers all the time, please see our jobs page.

Editions

There are two editions of GitLab:

  • GitLab Community Edition (CE) is available freely under the MIT Expat license.
  • GitLab Enterprise Edition (EE) includes extra features that are more useful for organizations with more than 100 users. To use EE and get official support please become a subscriber.

Website

On about.gitlab.com you can find more information about:

Requirements

Please see the requirements documentation for system requirements and more information about the supported operating systems.

Installation

The recommended way to install GitLab is with the Omnibus packages on our package server. Compared to an installation from source, this is faster and less error prone. Just select your operating system, download the respective package (Debian or RPM) and install it using the system's package manager.

There are various other options to install GitLab, please refer to the installation page on the GitLab website for more information.

You can access a new installation with the login root and password 5iveL!fe, after login you are required to set a unique password.

Install a development environment

To work on GitLab itself, we recommend setting up your development environment with the GitLab Development Kit. If you do not use the GitLab Development Kit you need to install and setup all the dependencies yourself, this is a lot of work and error prone. One small thing you also have to do when installing it yourself is to copy the example development unicorn configuration file:

cp config/unicorn.rb.example.development config/unicorn.rb

Instructions on how to start GitLab and how to run the tests can be found in the development section of the GitLab Development Kit.

Software stack

GitLab is a Ruby on Rails application that runs on the following software:

  • Ubuntu/Debian/CentOS/RHEL
  • Ruby (MRI) 2.1
  • Git 2.7.4+
  • Redis 2.8+
  • MySQL or PostgreSQL

For more information please see the architecture documentation.

Third-party applications

There are a lot of third-party applications integrating with GitLab. These include GUI Git clients, mobile applications and API wrappers for various languages.

GitLab release cycle

For more information about the release process see the release documentation.

Upgrading

For upgrading information please see our update page.

Documentation

All documentation can be found on doc.gitlab.com/ce/.

Getting help

Please see Getting help for GitLab on our website for the many options to get help.

Is it any good?

Yes

Is it awesome?

Thanks for asking this question Joshua. These people seem to like it.