Skip to content
Snippets Groups Projects
New issue look: Off

Help Page could be more helpful

    • Open Issue created by Sarrah Vesselov @sarrahvesselov

    Problem:

    The current Help page contains a lot of information but is not very helpful. The page is formatted as one long list, making it difficult to quickly find the problem/solution you are looking for. It also lacks polish, appearing more like a README doc than the help section for a product. There is also missed opportunities here to call out and explore features and actions users may not yet be aware of.

    Solution:

    Reformat the help page to have a clear hierarchy of information. Make it easy for users to find quick answers to a specific problem while allowing the opportunity to explore features and links to other resources.

    Related Issues:

    Remove from Rails app https://gitlab.com/gitlab-org/gitlab-ce/issues/18739

    Help Page Confusing https://gitlab.com/gitlab-org/gitlab-ee/issues/2297

    Allow Customizations (MR for 9.4) https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/11878

    Edited by Sarrah Vesselov

    Designs

      Child items ...

      2. Activity

      • Sarrah Vesselov mentioned in issue gitlab-com/marketing#1137

        mentioned in issue gitlab-com/marketing#1137

      • Sarrah Vesselov added UX in GitLab FOSS label

        added UX in GitLab FOSS label

      • username-removed-419655
        username-removed-419655 @markglenfletcher1 ·
        Developer

        I find the Docs at https://docs.gitlab.com/ee/README.html much more usable than those at https://gitlab.com/help or on the user's own instances, so I link to our Docs site whenever possible.

        The search function on the landing page is really useful too:

      • Sarrah Vesselov
        Sarrah Vesselov @sarrahvesselov ·
        Author Developer

        Thanks for the links @markglenfletcher, this is really helpful!

      • Sarrah Vesselov closed

        closed

      • Sarrah Vesselov reopened

        reopened

      • Sarrah Vesselov changed the description

        changed the description

      • Sarrah Vesselov assigned to @sarrahvesselov

        assigned to @sarrahvesselov

      • Sarrah Vesselov mentioned in issue gitlab-foss#29483 (moved)

        mentioned in issue gitlab-foss#29483 (moved)

      • Molly Young
        Molly Young @mollybeth ·
        Reporter

        Here are some questions I had from a lead - some about .com and some EE. I think there is also room for improvement with our FAQ pages. We have FAQ at the bottom of each product page, which makes sense to me, but also have this: https://about.gitlab.com/license-faq/.

        These questions will be cross posted, but thought it would be worth sharing here.

        1.   What sort of assurance can you give us that our data will be safe? What security measures do you have in place?

        GitLab follows industry best practices regarding security. Regular external network and application audits are performed. Azure and Digital Ocean both maintain SOC2 and ISO27001 certifications.

        1.   How many companies are using your SaaS solution, gitlab.com?

        We don't currently publish an official number for this, but there are over 100,000 groups on GitLab.com which could be companies, open-source initiatives, educational institutes or personal groups.

        1.   Are you going to be able to integrate with Azure AD?

        On-premises GitLab solutions (CE/EE/EEP) allow for Microsoft Azure AD integration. Currently, GitLab.com cannot due to SSO limitations when using multiple providers. This is something we are actively working on to include, and I suggest commenting on the open issue (milestone is set for next 2-3 months).

        1.   How do you delete our data if we cancel our account or you replace your hardware?

        For GitLab EE, 14 days after the end of your subscription, your key will no longer work and GitLab Enterprise Edition will not be functional anymore. You will be able to downgrade to GitLab Community Edition, which is free to use.

        1.   Do you have any certifications and adhere to best practices such as NIST?

        We do adhere to best practices and are in the process of attaining CSA STAR certification, but it will be some time. We do not utilize NIST standards such as 800-53, 800-115, 800-27, etc. directly but they do influence our security controls and assessments.

        1.   Have you ever had a breach and are you obligated to tell us if you've been breached?

        We have not. Our breach notification policy is in draft form and publicly available here: https://gitlab.com/gitlab-com/www-gitlab-com/merge_requests/5737

        It should be finalized and published soon.

        1.   Will any partners or 3rd parties you work with have access to our data?

        Third parties are sometimes hired to assist in improving the performance or security of GitLab.com. They may have access to user data during the course of their work. All third parties are required to sign non-disclosure agreements to protect sensitive data, including that belonging to users.

        1.   Do you pen test your systems and do you allow customers to pen test? What are the results?

        Yes, we regularly conduct penetration tests and other security assessments. Anyone is allowed to conduct security assessments against the GitLab software via our HackerOne bug bounty program. Assessments conducted against GitLab.com or associated infrastructure must be approved and have a signed contract and NDA.

        1.   Do you have scheduled maintenance periods which may be disruptive? If so, how will we be notified?

        Our goal is to avoid downtime whenever possible and we do not have scheduled downtime weekly or monthly. If downtime is necessary users are notified via the GitLab status Twitter account and via a banner on GitLab.com, typically several days in advance.

        Check out this documentation on High Availability and see more information on Premium Support, which offers live upgrade assistance and support for HA.

        1. Do you offer API access and can you verify that all are authenticated and encrypted? (which protocols are in use?)

        API access is a core feature of GitLab. All API calls require authentication and encryption via HTTPS.

        1. Do we own our data or do you? Metadata? This is available in our GitLab.com Terms.

        "We do not claim any ownership rights to the information that you submit to the GitLab application itself, your code is yours."

        1. Will our data be backed up off site or at a facility not operated by you? Will it be encrypted?

        The GitLab.com database is encrypted and backed up to Amazon S3. Repository backups are performed with mirrored disk images in Azure and are not kept off-site. There is a plan in place to keep another repository backup on a second cloud service provider using GitLab Geo which we hope to have in place soon.

        1. Is your data encrypted at rest, motion, and in use?

        Data is encrypted in motion via SSH and HTTPS. Data is not encrypted at the application or filesystem level.

        1. Is the Enterprise version supported on Windows?

        GitLab EE is hosted by you and is developed for Unix operating systems. Though it does not run on Windows, it can be run on virtual machines/containers, AWS, etc.

      • Sarrah Vesselov
        Sarrah Vesselov @sarrahvesselov ·
        Author Developer

        Thanks @mollybeth!

      • Sarrah Vesselov mentioned in issue gitlab-foss#17658 (closed)

        mentioned in issue gitlab-foss#17658 (closed)

      • Achilleas Pipinellis marked this issue as related to gitlab-foss#18739 (moved)

        marked this issue as related to gitlab-foss#18739 (moved)

      • Felipe Artur moved from gitlab-foss#34005 (moved)

        moved from gitlab-foss#34005 (moved)

      Please register or sign in to reply