delta/gitlab/gitlab-ce.git/app/controllers/application_controller.rb, branch button-focus-state gitlab.com: gitlab-org/gitlab-ce.git Implement U2F registration. 2016-06-06T07:20:31+00:00 Timothy Andrew mail@timothyandrew.net 2016-06-06T04:44:51+00:00 128549f10beb406333fa23c1693750c06ff7bc4a - Move the `TwoFactorAuthsController`'s `new` action to `show`, since the page is not used to create a single "two factor auth" anymore. We can have a single 2FA authenticator app, along with any number of U2F devices, in any combination, so the page will be accessed after the first "two factor auth" is created. - Add the `u2f` javascript library, which provides an API to the browser's U2F implementation. - Add tests for the JS components 
- Move the `TwoFactorAuthsController`'s `new` action to `show`, since
  the page is not used to create a single "two factor auth" anymore. We
  can have a single 2FA authenticator app, along with any number of U2F
  devices, in any combination, so the page will be accessed after the
  first "two factor auth" is created.
- Add the `u2f` javascript library, which provides an API to the
  browser's U2F implementation.
- Add tests for the JS components
Add a `U2fRegistrations` table/model. 2016-06-06T07:20:31+00:00 Timothy Andrew mail@timothyandrew.net 2016-06-06T04:38:42+00:00 791cc9138be6ea1783e3c3853370cf0290f4d41e - To hold registrations from U2F devices, and to authenticate them. - Previously, `User#two_factor_enabled` was aliased to the `otp_required_for_login` column on `users`. - This commit changes things a bit: - `User#two_factor_enabled` is not a method anymore - `User#two_factor_enabled?` checks both the `otp_required_for_login` column, as well as `U2fRegistration`s - Change all instances of `User#two_factor_enabled` to `User#two_factor_enabled?` - Add the `u2f` gem, and implement registration/authentication at the model level. 
- To hold registrations from U2F devices, and to authenticate them.
- Previously, `User#two_factor_enabled` was aliased to the
  `otp_required_for_login` column on `users`.
- This commit changes things a bit:
    - `User#two_factor_enabled` is not a method anymore
    - `User#two_factor_enabled?` checks both the
      `otp_required_for_login` column, as well as `U2fRegistration`s
    - Change all instances of `User#two_factor_enabled` to
      `User#two_factor_enabled?`
- Add the `u2f` gem, and implement registration/authentication at the
  model level.
Merge branch 'upgrade-devise-two-factor' into 'master' 2016-06-02T00:44:41+00:00 Robert Speicher robert@gitlab.com 2016-06-02T00:44:41+00:00 7d33fba7af94667311ab9a7d7d7041ed72ba3937 Upgrade devise, devise-two-factor, and attr_encrypted Devise 4 includes support for Rails 5, working towards #14286. devise-async doesn't support Devise 4.0 and in 4.1 the bug that was blocking using Devise's built-in ActiveJob integration was fixed. So devise-async is removed. devise-two-factor 3.0.0 is required for Devise 4 support. attr_encrypted and encryptor are optional but recommended upgrades for devise-two-factor 3.0.0. The mode and algorithm will need to be changed in order to update to attr_encrypted 4.x in the future. See merge request !4216 

Upgrade devise, devise-two-factor, and attr_encrypted

Devise 4 includes support for Rails 5, working towards #14286. devise-async doesn't support Devise 4.0 and in 4.1 the bug that was blocking using Devise's built-in ActiveJob integration was fixed. So devise-async is removed. devise-two-factor 3.0.0 is required for Devise 4 support.

attr_encrypted and encryptor are optional but recommended upgrades for devise-two-factor 3.0.0. The mode and algorithm will need to be changed in order to update to attr_encrypted 4.x in the future.

See merge request !4216
 Add leading comment space cop 2016-05-31T22:33:46+00:00 Felipe Artur felipefac@gmail.com 2016-05-31T22:33:46+00:00 56f3b243ce08d105758a9b6edf96792627fa423c 






Upgrade devise and devise-two-factor, remove devise-async
2016-05-30T19:51:21+00:00

Connor Shea
connor.james.shea@gmail.com

2016-05-19T18:52:08+00:00

d47b2b92c9b5e80eb3430e2b4950e17646b8efd8

Devise (3.5.4 => 4.1.1) Changelog:
https://github.com/plataformatec/devise/blob/master/CHANGELOG.md

devise-two-factor (2.0.1 => 3.0.0) Changelog:
https://github.com/tinfoil/devise-two-factor/blob/master/CHANGELOG.md

These are reliant on each other, so they have to be upgraded together.

devise-async is no longer necessary as Devise 4.1 fixes a bug with the
ActiveJob integration.





Devise (3.5.4 => 4.1.1) Changelog:
https://github.com/plataformatec/devise/blob/master/CHANGELOG.md

devise-two-factor (2.0.1 => 3.0.0) Changelog:
https://github.com/tinfoil/devise-two-factor/blob/master/CHANGELOG.md

These are reliant on each other, so they have to be upgraded together.

devise-async is no longer necessary as Devise 4.1 fixes a bug with the
ActiveJob integration.







Codestyle: make sure we have space around operators
2016-05-13T07:46:56+00:00

Gabriel Mazetto
gabriel@gitlab.com

2016-05-11T02:58:06+00:00

f5a0ac0fc197bae2eb5fe1045ed237cdbbaf6ea4












Use sign out path only if not empty
2016-05-03T20:10:49+00:00

Artem Sidorenko
artem@posteo.de

2016-04-30T15:38:39+00:00

d6c2d6bab9f00c288df3318424c4c1bbbca614dc












Add Sentry program context even without a current user
2016-04-14T17:56:30+00:00

Robert Speicher
rspeicher@gmail.com

2016-04-14T17:56:30+00:00

f58312976733fadb2b0cbf4b734f8d94220cb501












Include GonHelper separately and remove created_at in factory
2016-04-14T14:25:27+00:00

Stan Hu
stanhu@gmail.com

2016-04-14T12:28:46+00:00

e450892f5688529b8a49e3ae7598f00dbdda7161












Add spec for deletion of authorized OAuth2 application
2016-04-14T14:24:58+00:00

Stan Hu
stanhu@gmail.com

2016-04-13T05:39:18+00:00

c7e384aab23301ad0ee3559252324fa957d15db3

Closes #14370

Move gon function into its own helper





Closes #14370

Move gon function into its own helper