1. 09 Jun, 2021 2 commits
  2. 18 Jan, 2021 1 commit
  3. 17 Dec, 2020 1 commit
    • Craig Miskell's avatar
      Construct GITLAB_THROTTLE_USER_ALLOWLIST from a more detailed list · cdcf498c
      Craig Miskell authored
      The env var must be just a list of user ids, but we want to also note the username (for humans) *and* link to an issue where any remediation is being tracked, because these sort of bypasses are expected to be temporary while we work on fixes (better APIs, tiered rate-limits, etc).
      
      This change causes the cookbook to *construct* the environment variable value from a more detailed data structure.  In practice, the name and issue fields are arbitrary and not specifically required, just exemplars and the intended usage pattern.  The fact it is a hash will ensure operators provide a value, so this should encourage at least a comment.  I do not think it wise to require a specific value (hash with known fields) because the only way to enforce that is by chef failing a verification step at run time when rendering gitlab.rb, and our goal here is not worth the problems that might cause.
      cdcf498c
  4. 26 Nov, 2020 2 commits
  5. 03 Nov, 2020 2 commits
  6. 27 Jul, 2020 2 commits
  7. 11 Jun, 2020 2 commits
  8. 21 May, 2020 2 commits
  9. 07 May, 2020 3 commits
  10. 06 May, 2020 1 commit
  11. 22 Apr, 2020 3 commits
  12. 21 Apr, 2020 1 commit
  13. 14 Apr, 2020 1 commit
  14. 09 Apr, 2020 3 commits
  15. 07 Apr, 2020 4 commits
  16. 06 Apr, 2020 3 commits
    • Alejandro Rodríguez's avatar
      Update ssl file modes to accomodate `git` runned processes · 445d8093
      Alejandro Rodríguez authored
      Until now, all SSL cert/key pairs handled by this cookbook were comsumed
      by processes runned by the `root` user (in specific the `nginx` server).
      With the introduction of the Gitaly SSL setup this changes, since that
      process is runned by user `git`. For other services (e.g. postgresql) we
      have opted for having a `git` owned file in a folder different than
      /etc/gitlab/ssl managed by the cookbook that setups that serivce. That
      is not ideal for Gitaly, since it _is_ setup by this cookbook.
      
      This permission change makes it so the `git` user still doesn't have
      read access to the nginx keys (since it doesn't need to) but
      allows it to read the gitaly key.
      445d8093
    • Alejandro Rodríguez's avatar
      Merge branch 'add-publisher' into 'master' · 579ef9ce
      Alejandro Rodríguez authored
      Update cookbook setup and license
      
      See merge request !84
      579ef9ce
    • Alejandro Rodríguez's avatar
      Update cookbook setup and license · 38a383e5
      Alejandro Rodríguez authored
      This cookbook has been neglected for a while and it has become outdated
      in several ways we address here:
      
      - Update ruby in CI setup and in gem dependencies.
      - Update gitlab-styles and prefer its rubocop conventions over custom
      rules. Fix style infractions arising from this udpate.
      - Update license to MIT (the license used by our other cookbooks).
      Remove outadted notices and update copyright notice.
      38a383e5
  17. 31 Mar, 2020 2 commits
  18. 11 Feb, 2020 1 commit
  19. 10 Feb, 2020 1 commit
  20. 08 Jan, 2020 2 commits
  21. 07 Oct, 2019 1 commit