Skip to content

GitLab Next

Why GitLab
Pricing
Contact Sales
Explore

Sign in
Get free trial

Add support for Base64 encoded auth config

Review changes
Download
Patches
Plain diff

Philip Cunningham requested to merge philipcunningham-base64-decode-variables into master Mar 30, 2021

Overview 30
Commits 5
Pipelines 10
Changes 3

What does this MR do?

this merge request adds a base64 decoding preprocessing for auth_password and request_headers via new environment variables and command line options.

Why?

secrets for dast on-demand scans are base64 encoded before being saved in the monolith. this is done in order to allow the variables to be masked by default in the runner output. as a result, dast may receive two new environment variables DAST_PASSWORD_BASE64 and DAST_REQUEST_HEADERS_BASE64.

Related Issue(s)

gitlab-org/gitlab#225406 (closed)

What are the relevant issue numbers?

Does this MR meet the acceptance criteria?

Changelog entry added
Documentation created/updated for GitLab EE, if necessary
Documentation created/updated for this project, if necessary
Documentation reviewed by technical writer or follow-up review issue created
Tests added for this feature/bug
Job definition updated, if necessary
- Job definition example
- Vendored CI Templates (also in CE)
Conforms to the code review guidelines
Conforms to the Go guidelines
Security reports checked/validated by reviewer

Edited Apr 06, 2021 by Philip Cunningham

Merge request reports

Assignee

Select assignees

Reviewers

Request review from

Time tracking