提交 · e4fb16218693edd4382b96482ba94eba6c8a7f1a · 李少辉-开发者 / gitlab-foss

03 6月, 2017 1 次提交

Initial pass at prometheus monitoring. · e4fb1621

由 Kevin Lyda 提交于 3月 29, 2017

This is a step for #29118.

Add a single metric to count successful logins.

Summary types are not supported so remove Collector.  Either
we need to support the summary type or we need to create a
multiprocess-friendly Collector.

Add config to load prometheus and set up the Collector and the
Exporter.

Fix `Gemfile` as current prometheus-client gemspec is missing the
`mmap2` dependency.

e4fb1621

14 4月, 2017 1 次提交
- J
  Add user activity service and spec. Also added relevant - NOT offline - migration · 2951a854
  由 James Lopez 提交于 10月 05, 2016
```
It uses a user activity table instead of a column in users.
Tested with mySQL and postgreSQL
```
  2951a854
06 4月, 2017 1 次提交
- M
  
  Rename check_2fa_requirement to check_two_factor_requirement · 8e665140
  由 Markus Koller 提交于 3月 07, 2017
  
  8e665140
02 4月, 2017 1 次提交
- M
  
  Fix redirection after login when the referer have params · af0c08b6
  由 mhasbini 提交于 4月 02, 2017
  
  af0c08b6
06 3月, 2017 2 次提交
- P
  Remove unecessary calls to limit_user!, UniqueIps Middleware, and address MR review · 0ef8a643
  由 Pawel Chojnacki 提交于 2月 20, 2017
```
 - cleanup formating in haml
 - clarify time window is in seconds
 - cleanup straneous chunks in db/schema
 - rename count_uniqe_ips to update_and_return_ips_count
 - other
```
  0ef8a643
- P
  
  Allow limiting logging in users from too many different IPs. · e5cf3f51
  由 Pawel Chojnacki 提交于 2月 06, 2017
  
  e5cf3f51
23 2月, 2017 4 次提交
- D
  Revert "Prefer leading style for Style/DotPosition" · 1fe7501b
  由 Douwe Maan 提交于 2月 22, 2017
```
This reverts commit cb10b725c8929b8b4460f89c9d96c773af39ba6b.
```
  1fe7501b
- D
  
  Prefer leading style for Style/DotPosition · 206953a4
  由 Douwe Maan 提交于 2月 22, 2017
  
  206953a4
- D
  
  Fix code for cops · 5c7f9d69
  由 Douwe Maan 提交于 2月 22, 2017
  
  5c7f9d69
- D
  
  Enable Style/ConditionalAssignment · 8a4d68c5
  由 Douwe Maan 提交于 2月 21, 2017
  
  8a4d68c5
17 12月, 2016 1 次提交
- R
  
  Enable Style/MultilineOperationIndentation in Rubocop, fixes #25741 · 170efaab
  由 Rydkin Maxim 提交于 12月 16, 2016
  
  170efaab
12 12月, 2016 1 次提交
- J
  fix: removed signed_out notification · 3c36d9dc
  由 jnoortheen 提交于 12月 06, 2016
```
test: replaced signed_out message check with check for sign_in button

fixes #25294
```
  3c36d9dc
07 12月, 2016 1 次提交

fix: 24982- Remove'Signed in successfully' message · 6ab74b1c

由 jnoortheen 提交于 11月 29, 2016

After this change the sign-in-success flash message will not be shown

refactor: set flash message to be nil while signing in

test: changed tests to reflect removal of sign-in message

refactor: adding signed_in message back

See Merge Request !7837

issue#24982

6ab74b1c

04 8月, 2016 2 次提交
- C
  
  Remove provider path, replace with dynamic path. · 602fe111
  由 Connor Shea 提交于 7月 25, 2016
  
  602fe111
- C
  Add an oauth provider path helper. · e8c6f119
  由 Connor Shea 提交于 7月 18, 2016
```
The helper constructs the path for a given oauth provider since Devise 4.0 deprecated passing the provider to the omniauth authentication path.

Fixes #18110.
```
  e8c6f119
16 6月, 2016 2 次提交
- J
  Revert "squashed merge and fixed conflicts" · 452c076a
  由 James Lopez 提交于 6月 16, 2016
```
This reverts commit 13e37a3e.
```
  452c076a
- J
  
  squashed merge and fixed conflicts · 13e37a3e
  由 James Lopez 提交于 6月 16, 2016
  
  13e37a3e
06 6月, 2016 3 次提交
- P
  
  Check if the Users table has exactly one user limiting the whole set · 3b21174d
  由 Paco Guzman 提交于 6月 06, 2016
  
  3b21174d
- T
  Add a U2F-specific audit log entry after logging in. · 4db19bb4
  由 Timothy Andrew 提交于 6月 06, 2016
```
- "two-factor" for OTP-based 2FA
- "two-factor-via-u2f-device" for U2F-based 2FA
- "standard" for non-2FA login
```
  4db19bb4
- T
  Implement authentication (login) using a U2F device. · 86b07caa
  由 Timothy Andrew 提交于 6月 06, 2016
```
- Move the `authenticate_with_two_factor` method from
  `ApplicationController` to the `AuthenticatesWithTwoFactor` module,
  where it should be.
```
  86b07caa
03 6月, 2016 3 次提交
- P
  Added minimum password length to password field · 57a3f284
  由 Phil Hughes 提交于 6月 03, 2016
```
Closes #17765
```
  57a3f284
- J
  Revert "Fix merge conflicts - squashed commit" · 721014c9
  由 James Lopez 提交于 6月 03, 2016
```
This reverts commit 3e991230.
```
  721014c9
- J
  Fix merge conflicts - squashed commit · 3e991230
  由 James Lopez 提交于 6月 03, 2016
```
# Conflicts:
#	app/models/project.rb
```
  3e991230
31 5月, 2016 1 次提交

Pass the "Remember me" value to the 2FA token form · a602df30

由 Robert Speicher 提交于 5月 30, 2016

Prior, if a user had 2FA enabled and checked the "Remember me" field,
the setting was ignored because the OTP input was on a new form and the
value was never passed.

Closes #18000

a602df30

07 4月, 2016 1 次提交

Fix 2FA authentication spoofing vulnerability · 00da609c

由 Grzegorz Bizon 提交于 4月 07, 2016

This commit attempts to change default user search scope if otp_user_id
session variable has been set. If it is present, it means that user has
2FA enabled, and has already been verified with login and password. In
this case we should look for user with otp_user_id first, before picking
it up by login.

00da609c

05 3月, 2016 1 次提交
- R
  Allow the initial admin to set a password · 599a6d78
  由 Robert Speicher 提交于 3月 02, 2016
```
Closes #1980
```
  599a6d78
24 1月, 2016 1 次提交
- R
  
  Skip the 2FA requirement during logout · fdf68a8d
  由 Robert Speicher 提交于 1月 23, 2016
  
  fdf68a8d
29 12月, 2015 1 次提交
- G
  
  reCAPTCHA is configurable through Admin Settings, no reload needed. · a3469d91
  由 Gabriel Mazetto 提交于 12月 28, 2015
  
  a3469d91
28 12月, 2015 1 次提交
- S
  
  Add support for Google reCAPTCHA in user registration to prevent spammers · 9f7d379c
  由 Stan Hu 提交于 12月 27, 2015
  
  9f7d379c
20 9月, 2015 1 次提交

Bump devise-two-factor to 2.0.0 · 259851c0

由 Robert Speicher 提交于 9月 19, 2015

Addresses internal https://dev.gitlab.org/gitlab/gitlabhq/issues/2605

See https://github.com/tinfoil/devise-two-factor/pull/43

259851c0

02 9月, 2015 1 次提交
- V
  
  Crowd integration · 3700e5a9
  由 Valery Sizov 提交于 8月 31, 2015
  
  3700e5a9
12 8月, 2015 1 次提交
- A
  Fix redirection after sign in when using auto_sign_in_with_provider · fb6e8008
  由 Alex Lossent 提交于 8月 12, 2015
```
Logic for redirect path moved to a filter.
```
  fb6e8008
23 7月, 2015 1 次提交
- D
  
  Allow custom label to be set for authentication providers. · 70a3c165
  由 Douwe Maan 提交于 7月 02, 2015
  
  70a3c165
06 7月, 2015 1 次提交
- V
  
  Audit log for user authentication · 411829fd
  由 Valery Sizov 提交于 7月 03, 2015
  
  411829fd
20 6月, 2015 1 次提交
- R
  
  Use User#two_factor_enabled instead of otp_required_for_login · b6318297
  由 Robert Speicher 提交于 6月 19, 2015
  
  b6318297
30 5月, 2015 1 次提交

Add an option to automatically sign-in with an Omniauth provider without... · 5491f6fb

由 Alex Lossent 提交于 5月 27, 2015

Add an option to automatically sign-in with an Omniauth provider without showing the GitLab sign-in page

This is useful when integrating with existing SSO environments and we want to use a single Omniauth provider for
all user authentication.

5491f6fb

15 5月, 2015 1 次提交
- R
  
  Refactor SessionsController to use a controller concern · c802d8ee
  由 Robert Speicher 提交于 5月 14, 2015
  
  c802d8ee
10 5月, 2015 3 次提交
- R
  
  Prevent "You are already signed in." error message upon 2FA login · 5cd526f7
  由 Robert Speicher 提交于 5月 09, 2015
  
  5cd526f7
- R
  Move "invalid 2FA code" error message to the flash · 76873ce4
  由 Robert Speicher 提交于 5月 09, 2015
```
This makes it consistent with the Invalid email/password error message
from the previous step.
```
  76873ce4
- R
  Refactor SessionsController · 32971b0a
  由 Robert Speicher 提交于 5月 08, 2015
```
Also adds test case for providing an invalid 2FA code and then a valid
one without re-entering username and password.
```
  32971b0a