Commit 5f4dcbf8 authored by Stan Hu's avatar Stan Hu

Set OmniAuth full_host parameter to ensure redirect URIs are correct

Closes #1967
parent a84ed6eb
Please view this file on the master branch, on stable branches it's out of date.
v 7.14.0 (unreleased)
- Set OmniAuth full_host parameter to ensure redirect URIs are correct (Stan Hu)
- Expire Rails cache entries after two weeks to prevent endless Redis growth
- Add support for destroying project milestones (Stan Hu)
......
......@@ -11,6 +11,7 @@ module OmniAuth::Strategies
end
end
OmniAuth.config.full_host = Settings.gitlab['url']
OmniAuth.config.allowed_request_methods = [:post]
#In case of auto sign-in, the GET method is used (users don't get to click on a button)
OmniAuth.config.allowed_request_methods << :get if Gitlab.config.omniauth.auto_sign_in_with_provider.present?
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment