BigW Consortium Gitlab

  1. 01 Dec, 2016 1 commit
  2. 25 Nov, 2016 1 commit
    • Refresh project authorizations using a Redis lease · 92b2c74c
      Yorick Peterse authored
      When I proposed using serializable transactions I was hoping we would be
      able to refresh data of individual users concurrently. Unfortunately
      upon closer inspection it was revealed this was not the case. This could
      result in a lot of queries failing due to serialization errors,
      overloading the database in the process (given enough workers trying to
      update the target table).
      
      To work around this we're now using a Redis lease that is cancelled upon
      completion. This ensures we can update the data of different users
      concurrently without overloading the database.
      
      The code will try to obtain the lease until it succeeds, waiting at
      least 1 second between retries. This is necessary as we may otherwise
      end up _not_ updating the data which is not an option.
  3. 23 Nov, 2016 3 commits
  4. 18 Nov, 2016 2 commits
  5. 17 Nov, 2016 1 commit
  6. 16 Nov, 2016 2 commits
  7. 07 Nov, 2016 3 commits
  8. 04 Nov, 2016 1 commit
  9. 01 Nov, 2016 1 commit
    • Allow to search for user by secondary email address in the admin interface · f8530580
      Yar authored
      It is not possible to search for a user by his secondary email address in
      the Users search bar in the admin interface(/admin/users). A use-case could
       be that an admin wants to remove a specific secondary email address of an
      user, because it interferes with another user. Issue #23761
      
      This commit adds ability to search not only by main email, but also
      by any secondary email in the admin interface.
  10. 27 Oct, 2016 1 commit
    • Only show one error message for an invalid email · 36ec5eaf
      Steve Halasz authored
      If notification_email is blank, it's set from email. If an admin
      attempted to create a user with an invalid email, an error would be
      displayed for both fields. Only validate the notification_email if it's
      different from email.
  11. 25 Oct, 2016 1 commit
    • Fix `User#to_reference` · fed3f718
      Timothy Andrew authored
      1. Changes in 8.13 require `Referable`s that don't have a project
         reference to accept two arguments - `from_project` and
         `target_project`.
      
      2. `User#to_reference` was not changed to accept the
         `target_project` (even though it is not used). Moving an issue
         containing a user reference would throw a "invalid number of
         arguments" exception.
      
      Fixes #23662
  12. 24 Oct, 2016 1 commit
  13. 11 Oct, 2016 1 commit
  14. 07 Oct, 2016 1 commit
  15. 05 Oct, 2016 1 commit
    • Refactor Gitlab::Identifier · 16ed9b61
      Yorick Peterse authored
      This refactors Gitlab::Identifier so it uses fewer queries and is
      actually tested. Queries are reduced by caching the output as well as
      using 1 query (instead of 2) to find a user using an SSH key.
  16. 04 Oct, 2016 1 commit
    • Restrict failed login attempts for users with 2FA · 194fbc3c
      Sean McGivern authored
      Copy logic from `Devise::Models::Lockable#valid_for_authentication?`, as
      our custom login flow with two pages doesn't call this method. This will
      increment the failed login counter, and lock the user's account once
      they exceed the number of failed attempts.
      
      Also ensure that users who are locked can't continue to submit 2FA
      codes.
  17. 15 Sep, 2016 2 commits
  18. 01 Sep, 2016 1 commit
  19. 30 Aug, 2016 1 commit
  20. 24 Aug, 2016 1 commit
  21. 17 Aug, 2016 1 commit
  22. 12 Aug, 2016 1 commit
  23. 04 Aug, 2016 1 commit
  24. 03 Aug, 2016 1 commit
    • Store OTP secret key in secrets.yml · 405379bb
      Sean McGivern authored
      .secret stores the secret token used for both encrypting login cookies
      and for encrypting stored OTP secrets. We can't rotate this, because
      that would invalidate all existing OTP secrets.
      
      If the secret token is present in the .secret file or an environment
      variable, save it as otp_key_base in secrets.yml. Now .secret can be
      rotated without invalidating OTP secrets.
      
      If the secret token isn't present (initial setup), then just generate a
      separate otp_key_base and save in secrets.yml.
      
      Update the docs to reflect that secrets.yml needs to be retained past
      upgrades, but .secret doesn't.
  25. 01 Aug, 2016 1 commit
  26. 20 Jul, 2016 1 commit
  27. 19 Jul, 2016 1 commit
  28. 18 Jul, 2016 5 commits
  29. 15 Jul, 2016 1 commit