| ... | @@ -15,6 +15,8 @@ class SessionsController < Devise::SessionsController |
... | @@ -15,6 +15,8 @@ class SessionsController < Devise::SessionsController |
|
|
prepend_before_action :check_captcha, only: [:create]
|
|
prepend_before_action :check_captcha, only: [:create]
|
|
|
prepend_before_action :store_redirect_uri, only: [:new]
|
|
prepend_before_action :store_redirect_uri, only: [:new]
|
|
|
prepend_before_action :ldap_servers, only: [:new, :create]
|
|
prepend_before_action :ldap_servers, only: [:new, :create]
|
|
|
|
prepend_before_action :ensure_password_authentication_enabled!, if: :password_based_login?, only: [:create]
|
|
|
|
|
|
|
before_action :auto_sign_in_with_provider, only: [:new]
|
|
before_action :auto_sign_in_with_provider, only: [:new]
|
|
|
before_action :load_recaptcha
|
|
before_action :load_recaptcha
|
|
|
|
|
|
| ... | @@ -126,6 +128,14 @@ class SessionsController < Devise::SessionsController |
... | @@ -126,6 +128,14 @@ class SessionsController < Devise::SessionsController |
|
|
end
|
|
end
|
|
|
# rubocop: enable CodeReuse/ActiveRecord
|
|
# rubocop: enable CodeReuse/ActiveRecord
|
|
|
|
|
|
|
|
|
def ensure_password_authentication_enabled!
|
|
|
|
render_403 unless Gitlab::CurrentSettings.password_authentication_enabled_for_web?
|
|
|
|
end
|
|
|
|
|
|
|
|
def password_based_login?
|
|
|
|
user_params[:login].present? || user_params[:password].present?
|
|
|
|
end
|
|
|
|
|
|
|
def user_params
|
|
def user_params
|
|
|
params.require(:user).permit(:login, :password, :remember_me, :otp_attempt, :device_response)
|
|
params.require(:user).permit(:login, :password, :remember_me, :otp_attempt, :device_response)
|
|
|
end
|
|
end
|
| ... | |
... | |
| ... | | ... | |