- 13 Jul, 2017 1 commit
-
-
Robin Bobbitt authored
When sign-in is disabled: - skip password expiration checks - prevent password reset requests - don’t show Password tab in User Settings - don’t allow login with username/password for Git over HTTP requests - render 404 on requests to Profiles::PasswordsController
-
- 16 May, 2017 1 commit
-
-
Tim Zallmann authored
-
- 22 Mar, 2017 1 commit
-
-
Jose Ivan Vargas authored
-
- 07 Mar, 2017 1 commit
-
-
Mike Greiling authored
-
- 31 Dec, 2016 2 commits
-
-
Kushal Pandya authored
-
Kushal Pandya authored
-
- 27 Dec, 2016 1 commit
-
-
Luke "Jared" Bennett authored
Added tests
-
- 02 Dec, 2016 1 commit
-
-
Jacopo authored
When ldap is enabled and use "Standard" authentication method, if authentication fails the correct tab remain selected. This is done by saving into localStorage when the active tab changes and by always selecting that tab when the page is loaded.
-
- 18 Nov, 2016 1 commit
-
-
Bryce Johnson authored
-
- 02 Nov, 2016 1 commit
-
-
Bryce Johnson authored
-
- 22 Oct, 2016 1 commit
-
-
Bernardo Anderson authored
-
- 20 Oct, 2016 3 commits
-
-
Clement Ho authored
This *unreverts* 8751491b, which was mistakenly reverted in !6328. It also changes the implementation of the original commit to work with the new login styling and markup. cc: @ClemMakesApps
-
Bryce Johnson authored
(Also fix some issues for session views on small screens.)
-
Clement Ho authored
This *unreverts* 8751491b, which was mistakenly reverted in !6328. It also changes the implementation of the original commit to work with the new login styling and markup. cc: @ClemMakesApps
-
- 18 Oct, 2016 4 commits
-
-
Bryce Johnson authored
-
Bryce Johnson authored
-
Bryce Johnson authored
-
Bryce Johnson authored
-
- 15 Oct, 2016 8 commits
-
-
Bryce Johnson authored
-
Bryce Johnson authored
-
Bryce Johnson authored
-
Bryce Johnson authored
-
Bryce Johnson authored
-
Bryce Johnson authored
-
Bryce Johnson authored
-
Bryce Johnson authored
- Tab between register and sign in forms - Add individual input validation error messages - Validate username - Update many styles for all login-box forms
-
- 13 Oct, 2016 1 commit
-
-
Clement Ho authored
-
- 21 Sep, 2016 1 commit
-
-
Dmitry Smirnov authored
~~~~ ActionView::Template::Error (undefined method `user_omniauth_callback_path' ~~~~ Signed-off-by: Dmitry Smirnov <onlyjob@member.fsf.org>
-
- 02 Sep, 2016 1 commit
-
-
DJ Mountney authored
Matches the changes done for non-u2f two-factor auth
-
- 03 Aug, 2016 2 commits
-
-
Connor Shea authored
-
Connor Shea authored
The helper constructs the path for a given oauth provider since Devise 4.0 deprecated passing the provider to the omniauth authentication path. Fixes #18110.
-
- 14 Jul, 2016 2 commits
-
-
Timothy Andrew authored
1. This scenario was previously tested for the registration flow, but not authentication.
-
Timothy Andrew authored
1. Only on supported Chrome versions 2. Mainly, this lets us simplify the javascript-based U2F check to `window.u2f`, where `window.u2f` can either be loaded from the GitLab server (for Chrome) or from the Firefox extension. 3. This is a better way to provide browser detection for U2F.
-
- 07 Jun, 2016 1 commit
-
-
Robert Speicher authored
The OTP input form is shared by both LDAP and standard logins, but when coming from an LDAP-based form, the form parameters aren't nested in a Hash based on the `resource_name` value. Now we check for a nested `remember_me` parameter and use that if it exists, or fall back to the non-nested parameters if it doesn't. Somewhat confusingly, the OTP input form _does_ nest parameters under the `resource_name`, regardless of what type of login we're coming from, so that allows everything else to work as normal.
-
- 06 Jun, 2016 1 commit
-
-
Timothy Andrew authored
- Move the `authenticate_with_two_factor` method from `ApplicationController` to the `AuthenticatesWithTwoFactor` module, where it should be.
-
- 03 Jun, 2016 2 commits
-
-
James Lopez authored
This reverts commit 3e991230.
-
James Lopez authored
# Conflicts: # app/models/project.rb
-
- 01 Jun, 2016 1 commit
-
-
Connor Shea authored
-
- 31 May, 2016 1 commit
-
-
Robert Speicher authored
Prior, if a user had 2FA enabled and checked the "Remember me" field, the setting was ignored because the OTP input was on a new form and the value was never passed. Closes #18000
-
- 12 May, 2016 1 commit
-
-
Andrei Gliga authored
-