GPG signed commits (!9546) · Merge requests · GitLab.org / GitLab FOSS · GitLab

GitLab 15.0 is launching on May 22! This version brings many exciting improvements, but also removes deprecated features and introduces breaking changes that may impact your workflow. To see what is being deprecated and removed, please visit Breaking changes in 15.0 and Deprecations.

Project 'gitlab-org/gitlab-ce' was moved to 'gitlab-org/gitlab-foss'. Please update any links and bookmarks that may still have the old path.

GPG signed commits

What does this MR do?

Shows gpg signed commits (excl. tags)
If the gpg key is verified (= the gpg was added to GitLab and the user's email matches the key's email) a "Verified" batch is displayed
If the gpg key is not verified or does not exist on GitLab an "Unverified" batch is displayed
If the commit is not signed, the behaviour is unchanged
Allows the user to add gpg keys to his profile

Are there points in the code the reviewer needs to double check?

Why was this MR needed?

Git allows to signed commits. This PR enables displaying those commits.

The development of this MR is sponsored by @siemens (/cc @bufferoverflow).

Screenshots (if relevant)

Commits list:

Commit details:

Badge popovers:

User settings > GPG key:

Does this MR meet the acceptance criteria?

Changelog entry added
Documentation created/updated
API support added
Tests
- Added for this feature/bug
- All builds are passing
Conform by the merge request performance guides
Conform by the style guides
Branch has no merge conflicts with master (if it does - rebase it please)
Squashed related commits together

What are the relevant issue numbers?

Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/20268.

Edited Jul 27, 2017 by Dmytro Zaporozhets (DZ)