Fix logins via OAuth2 geting logged out in an hour (!21144) · Merge requests · GitLab.org / GitLab FOSS

Stan Hu requested to merge sh-fix-issue-50210-oauth2 into master Aug 10, 2018

Users without GitLab 2FA enabled would be logged out after an hour due to a regression in https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/20700.

The OAuth2 controller sets the current_user after the controller is finished, so we should only limit session times after this has been done.

Edited Aug 10, 2018 by Stan Hu

Admin message