Not replacing issue references are closed issues won't be moved.

Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>

In https://gitlab.com/gitlab-org/gitaly/merge_requests/1297, we
introduced a mechanism to prevent accidental deletion of objects from
object pools. The idea is that if an object becomes "dangling", meaning
there is no ref pointing to it, we just add a new ref to un-dangle
it. It turns out this can create too many refs.

If a pooled repository may contain many dangling references, a fetch
from the parent repository to one of its fork may take an
extraordinarily long time because git will attempt to run `git
for-each-ref` on every single ref in the pooled repository. This can
cause a simple fetch to take minutes.

To avoid this problem, we use a similar strategy that we employed in the
`git push` case
(https://gitlab.com/gitlab-org/omnibus-gitlab/merge_requests/3364).  Git
added a config option, core.alternateRefsCommand, to fix this issue.
From
https://github.com/git/git/commit/465e73fff380808f0ba3fb17984ab8636afb6405:

When pushing into a repository that borrows its objects from an
alternate object store, "git receive-pack" that responds to the push
request on the other side lists the tips of refs in the alternate to
reduce the amount of objects transferred.  This sometimes is detrimental
when the number of refs in the alternate is absurdly large, in which
case the bandwidth saved in potentially fewer objects transferred is
wasted in excessively large ref advertisement.  The alternate refs that
are advertised are now configurable with a pair of configuration
variables.

Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/65985

Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>

Ian Baum authored 5 years ago and Balasankar C committed 5 years ago

As this is still less common and old IDE won't accept EC certs,
only modern AEAD encryption methods are enabled.

CE MR: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/30644

https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/14975 added
support for enabling the nonce-based `Content-Security-Type` headers,
which can significantly reduce JavaScript cross-site scripting (XSS)
attacks.

Currently this is not on by default because misconfiguring it
could potentially break loading of JavaScript. Users can configure
the `report_only` and `report_uri` values to report CSP violations
before they enable it completely.

In the future, we hope to generate reasonable defaults
(https://gitlab.com/gitlab-org/gitlab-ce/issues/65675) so that
GitLab will be secured by default.

Related to https://gitlab.com/gitlab-org/gitlab-pages/merge_requests/155

Now that we're shipping OpenSSL v1.1.1 and TLS v1.3 is becoming
used more frequently, let's enable it by default.

Closes https://gitlab.com/gitlab-org/omnibus-gitlab/issues/4526

This reverts merge request !3364

On GitLab.com, we noticed pushes to the GitLab CE and EE repositories
were taking 3-4 minutes because they were advertising thousands of refs
from forked repositories..

Git added a config option, core.alternateRefsPrefixes, to fix that
issue.  From
https://github.com/git/git/commit/465e73fff380808f0ba3fb17984ab8636afb6405:

When pushing into a repository that borrows its objects from an
alternate object store, "git receive-pack" that responds to the push
request on the other side lists the tips of refs in the alternate to
reduce the amount of objects transferred.  This sometimes is detrimental
when the number of refs in the alternate is absurdly large, in which
case the bandwidth saved in potentially fewer objects transferred is
wasted in excessively large ref advertisement.  The alternate refs that
are advertised are now configurable with a pair of configuration
variables.

Since we don't need this configured on a per-repository basis, we
can set it as a global setting.

Closes https://gitlab.com/gitlab-org/gitaly/issues/1747

vshushlin authored 5 years ago and DJ Mountney committed 5 years ago

* remove auth_server from config template
* mark auth_server as deprecated in default attributes

Please enter the commit message for your changes. Lines starting

Krasimir Angelov authored 5 years ago and DJ Mountney committed 5 years ago

Related to https://gitlab.com/gitlab-org/gitlab-pages/issues/187

Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>

Ben Anderson authored 5 years ago and Ian Baum committed 5 years ago

Closes #4140

- Release 12.0 will default to JSON logging for all services that
  support it except for the registry. This includes gitaly,
  gitlab-shell, gitlab-workhorse, sidekiq, gitlab-pages.

Resolves: https://gitlab.com/gitlab-org/omnibus-gitlab/issues/4102



Signed-off-by: Robert Marshall <rmarshall@gitlab.com>

Krasimir Angelov authored 5 years ago and DJ Mountney committed 5 years ago

Related to https://gitlab.com/gitlab-org/gitlab-pages/issues/150

Removed unused init template

Takuya Noguchi authored 5 years ago and Ian Baum committed 5 years ago

Signed-off-by: Takuya Noguchi <takninnovationresearch@gmail.com>

Signed-off-by: Balasankar "Balu" C <balasankar@gitlab.com>

* Allow gitlab auth signup by default.
* Fix external URLs.
* Fix api_url path.
* Fix bug in template rendering.
* Fix tests.
* Update docs for auth setup.