Commits · 69d55d44c1219078841a3fb8f66ba250185c29a6 · GitLab.org / GitLab

Jan 13, 2025
- Update all standard offering messages · 69d55d44
  Marcel Amirault authored 1 month ago
  
  Update offering notes with all three offerings
  Verified
  
  69d55d44
Jan 10, 2025
- Correcting the GitLab version on which CI_JOB_JWT was removed · 60c3d91d
  Vianney Chacon Madriz authored 1 month ago
  
  Verified
  
  60c3d91d
Nov 28, 2024
- Update page name and title to generic term · 6abbac29
  Cynthia "Arty" Ng authored 3 months ago
  
  Verified
  
  6abbac29
Nov 15, 2024
- Apply 1 suggestion(s) to 1 file(s) · 2ac37225
  Zachary Painter authored 3 months ago
  
  Co-authored-by: Lysanne Pinto <lpinto@gitlab.com>
  Verified
  
  2ac37225
Nov 11, 2024
- Update stage for pipeline security · 66560c86
  Marcel Amirault authored 4 months ago
  
  Verified
  
  66560c86
Nov 06, 2024
- Revert "Fix multiple typos" · 84616e0e
  Zachary Painter authored 3 months ago
  
  This reverts commit 0d054978.
  Verified
  
  84616e0e
Oct 11, 2024
- Clarify bound claims in Vault CI/CD integration docs · ce347da8
  Ben Ridley authored 4 months ago
  
  Verified
  
  ce347da8
Oct 10, 2024
- Update Runner links that just moved · 7d440b77
  Amy Qualls authored 4 months ago
  
  These links just changed in the Runner repo. Let's update them here so they stay in sync.
  Verified
  
  7d440b77
Oct 03, 2024
- Add variables-related troubleshooting for secrets providers · 3027a0ed
  Armin Hergenhan authored 4 months ago
  
  Verified
  
  3027a0ed
Oct 02, 2024
- Add version numbers to antique CI images · 698ff05a
  Amy Qualls authored 5 months ago
  
  Make clear how old these images actually are.
  Verified
  
  698ff05a
Sep 30, 2024
- Correct minor typo · 580e6cb8
  Chris Stone authored 5 months ago
  
  Verified
  
  580e6cb8
Sep 18, 2024
- Update stage for pipeline security · d86c9649
  Marcel Amirault authored 5 months ago
  
  Verified
  
  d86c9649
Sep 12, 2024
- Remove akeyless from nav report · f726f12c
  Marcel Amirault authored 5 months ago
  
  Verified
  
  f726f12c
Sep 11, 2024
- Apply 2 suggestion(s) to 1 file(s) · ec2a27f1
  Brendan Lynch authored 5 months ago
  
  Co-authored-by: Amy Qualls <aqualls@gitlab.com>
  Verified
  
  ec2a27f1
Sep 10, 2024
- Explain Akeyless only supports static secrets · debc612a
  Max Orefice authored 5 months ago
  
  Verified
  
  debc612a
Sep 05, 2024
- Move vault page to secrets directory · 60f772df
  Marcel Amirault authored 5 months ago
  
  Verified
  
  60f772df
Aug 30, 2024

Max Orefice authored 6 months ago

This commit allows to akeyless vault integration within gitlab.
Introduced as an experiment and could be removed at any time.

Co-authored-by: Amir Maor<>

Verified

007b9fa2

Aug 23, 2024
- Update aud and namespace details · 4125daad
  Rose Zhan authored 6 months ago
  
  Verified
  
  4125daad
Aug 06, 2024
- Add missing tier and offering details · 6bc5d6e2
  Marcel Amirault authored 6 months ago
  
  Verified
  
  6bc5d6e2
Aug 02, 2024
- Add new term warning and update terms · e282255c
  Brendan Lynch authored 7 months ago
  
  Verified
  
  e282255c
Jul 30, 2024
- Fix typo in groups_direct feature flag reference · 063204cb
  Stan Hu authored 7 months ago
  
  The parenthesis was in the wrong place, causing text to be dropped and a bad link.
  Verified
  
  063204cb
Jul 29, 2024

Put groups_direct field in CI JWT tokens behind feature flag · 88080c3c

Stan Hu authored 7 months ago

In GitLab 16.11
!146881
introduced the `groups_direct` fields for CI JWT tokens used in the
Vault integration. However, since JWT tokens are often sent in the
`Authorization` HTTP header, the addition of the `groups_direct` field
can cause the header to exceed the maximum allowed header size of
Web/proxy servers.

To avoid this issue, put this `groups_direct` field behind a
`ci_jwt_groups_direct` feature flag while we figure out the best way
to handle this.

Relates to #467253

Changelog: changed

Verified

88080c3c

Jul 19, 2024
- GCP Secret Manager will not work with most projects used by GitLab employees... · 7e74d668
  James Sandlin authored 7 months ago
  
  GCP Secret Manager will not work with most projects used by GitLab employees due to repo path length.
  Verified
  
  7e74d668
Jun 24, 2024
- Apply 2 suggestion(s) to 1 file(s) · e16cbb03
  JM Faircloth authored 8 months ago
  
  Co-authored-by: Marcel Amirault <mamirault@gitlab.com>
  Verified
  
  e16cbb03
Jun 13, 2024
- Apply 5 suggestion(s) to 2 file(s) · 8e49403a
  Lorena Ciutacu authored 8 months ago
  
  Co-authored-by: Christina Lohr <clohr@gitlab.com>
  Verified
  
  8e49403a
Jun 06, 2024
- Troubleshooting for vault secrets · b44efd74
  Daphne Kua authored 8 months ago and Daphne Kua committed 8 months ago
  
  Apply 1 suggestion(s) to 1 file(s) Co-authored-by: Marcel Amirault <mamirault@gitlab.com>
  b44efd74
May 30, 2024
- Permissions gcp secret manager · 54bc48eb
  Frederic Loudet authored 9 months ago
  
  Verified
  
  54bc48eb
May 21, 2024
- Assorted minor improvements to CI/CD docs · 878ca5c0
  Marcel Amirault authored 9 months ago
  
  Fix navigation language and minor vale and formatting tweaks.
  Verified
  
  878ca5c0
May 13, 2024

Document fully-qualified secret naming for GCP secrets · bb59b179

Rich Wareham authored 9 months ago

In gitlab-runner!4718
support was added for using GCP secrets from a project other than the
one containing the WIF pool. This is done by specifying the
fully-qualified secret name.

Document the feature in the GCP secret manager documentation.

Part of gitlab-runner#37487

Verified

bb59b179

May 07, 2024
- Update file convert-to-id-tokens.md · 5b7888ba
  Alistair Hey authored 9 months ago
  
  5b7888ba
Apr 24, 2024
- Remove old version references · 7dcc0325
  Tom Houston authored 10 months ago
  
  Verified
  
  7dcc0325
Apr 22, 2024

Make ID token vault audience consistent in id_token_authentication.md · d80df670
Josh Bielick authored 10 months ago
```
relates to !150362
```
d80df670

Use more meaningful audience in ID token examples · 1c0e8f57

Josh Bielick authored 10 months ago

The audience of the JWT should be explicit—matching the party it was intended to be given to / used by.
In these examples, the token is created to attest identity to the Vault server, so the audience is the Vault server.
Using the opposite party (gitlab instance) as the audience would prevent Vault from validating
if a provided JWT was issued for usage in Vault server or if it was issued for a different service and
is being co-opted to authenticate with Vault.

1c0e8f57

Fix spelling in convert-to-id-tokens.md · 3e56f90a
Josh Bielick authored 10 months ago

3e56f90a

Apr 18, 2024
- Simplify job control page by creating dedicated rules page · f4cb9a4c
  Marcel Amirault authored 10 months ago
  
  There's too much content about rules variations for one page, so we need a dedicated page for these examples and details
  Verified
  
  f4cb9a4c
Apr 11, 2024
- Update 2 files · 2409ef75
  Ivo Ivanov authored 10 months ago
  
  - /doc/ci/secrets/index.md - /doc/ci/yaml/index.md
  Verified
  
  2409ef75
Mar 25, 2024

Add groups_direct field in JWT for Vault integration · 3b628813

Alex Jieanu authored 11 months ago

This is needed in order to be able to filter users by group in Vault
secrets management integration.

#435848

Changelog: changed

Verified

3b628813

Mar 06, 2024
- Fixes broken or redirecting links · 5ae5fb35
  Amy Qualls authored 11 months ago
  
  Another batch of links, fixed.
  Verified
  
  5ae5fb35
Feb 27, 2024
- Updating badges to separate Dedicated from SaaS · 62ec53e0
  Suzanne Selhorn authored 1 year ago
  
  Related to: #439130
  Verified
  
  62ec53e0
Feb 26, 2024
- Document issue - Google Cloud Secret Manager with SaaS Runner · dba4b4ea
  Albert authored 1 year ago
  
  Verified
  
  dba4b4ea