doc · 13a977475aa813636c31f606e93ee2cc1a9e8d75 · Forest Godfrey / gitlab-ce

Merge branch 'gitlab-workhorse-safeties' into 'master' · b7e6da5a

authored Sep 09, 2016

Security and safety improvements for gitlab-workhorse integration

Companion to https://gitlab.com/gitlab-org/gitlab-workhorse/merge_requests/60

- Use a custom content type when sending data to gitlab-workhorse
- Verify (using JWT and a shared secret on disk) that internal API requests came from gitlab-workhorse

This will allow us to build features in gitlab-workhorse that require
more trust, and protect us against programming mistakes in the future.

This is designed so that no action is required for installations from
source. For omnibus-gitlab we need to add code that manages the shared
secret.

See merge request !5907

b7e6da5a

Name	Last commit	Last update
..
administration		Loading commit data...
api		Loading commit data...
ci		Loading commit data...
container_registry		Loading commit data...
customization		Loading commit data...
development		Loading commit data...
downgrade_ee_to_ce		Loading commit data...
gitlab-basics		Loading commit data...
hooks		Loading commit data...
incoming_email		Loading commit data...
install		Loading commit data...
integration		Loading commit data...
intro		Loading commit data...
legal		Loading commit data...
logs		Loading commit data...
markdown		Loading commit data...
migrate_ci_to_ce		Loading commit data...
monitoring		Loading commit data...
operations		Loading commit data...
permissions		Loading commit data...
profile		Loading commit data...
project_services		Loading commit data...
public_access		Loading commit data...
raketasks		Loading commit data...
security		Loading commit data...
ssh		Loading commit data...
system_hooks		Loading commit data...
update		Loading commit data...
user		Loading commit data...
web_hooks		Loading commit data...
workflow		Loading commit data...
README.md		Loading commit data...

README.md