| Name |
Last commit
|
Last update |
|---|---|---|
| .. | ||
| api | ||
| ci/api | ||
| projects | ||
| git_http_spec.rb | ||
| jwt_controller_spec.rb | ||
| lfs_http_spec.rb |
BigW Consortium Gitlab
Security and safety improvements for gitlab-workhorse integration Companion to https://gitlab.com/gitlab-org/gitlab-workhorse/merge_requests/60 - Use a custom content type when sending data to gitlab-workhorse - Verify (using JWT and a shared secret on disk) that internal API requests came from gitlab-workhorse This will allow us to build features in gitlab-workhorse that require more trust, and protect us against programming mistakes in the future. This is designed so that no action is required for installations from source. For omnibus-gitlab we need to add code that manages the shared secret. See merge request !5907
| Name |
Last commit
|
Last update |
|---|---|---|
| .. | ||
| api | Loading commit data... | |
| ci/api | Loading commit data... | |
| projects | Loading commit data... | |
| git_http_spec.rb | Loading commit data... | |
| jwt_controller_spec.rb | Loading commit data... | |
| lfs_http_spec.rb | Loading commit data... |