CentauriSolutions / EyeDP

87%

master: 88%

LAST BUILD ON BRANCH v1.1

branch: v1.1

CHANGE BRANCH

x

Reset

• v1.1
• 1.0/bug/427
• 1.0/bug/open-redirect
• CVE-2021-22903
• admin-dashboard-again
• allow-ssl-config
• backport/mobile-login-width
• bug/111
• bug/122
• bug/124
• bug/129
• bug/145
• bug/147
• bug/150
• bug/172714235
• bug/172715064
• bug/173109087
• bug/211
• bug/214
• bug/215
• bug/218
• bug/221
• bug/224
• bug/295
• bug/2fa-and-redirect_to
• bug/35
• bug/404
• bug/413
• bug/423
• bug/424
• bug/456
• bug/463
• bug/474
• bug/500-on-duplicate-user-details
• bug/55
• bug/58
• bug/95
• bug/admin-password-edit
• bug/admin-user-creation
• bug/auth-basic-302
• bug/auth-basic-times
• bug/authenticate-user-profile
• bug/backwards-timeout
• bug/bad-webauthn-js-import
• bug/broken-logo-if-empty
• bug/case-insensitive-emails
• bug/commit-info
• bug/confirmation-instructions-page-error
• bug/delete-u2f-devices
• bug/docker-compose-installation
• bug/empty-group-welcome-email
• bug/empty-service-provider
• bug/expiration-clears-groups
• bug/fix-doorkeeper-name-conflict
• bug/fix-rubocop
• bug/floating-quotes-on-2fa
• bug/github-actions
• bug/gitleaks-licensing
• bug/group-creation-ui
• bug/groups-vs-asserted-groups
• bug/heroku-deploy
• bug/install-node
• bug/invisible-creation-errors
• bug/login-error
• bug/logo-url
• bug/mandatory-2fa-notice
• bug/mfa-check
• bug/missing-nav-link-for-webhooks
• bug/nav-menu-cutoff
• bug/nokogiri-security-update
• bug/oidc-provider-display-name
• bug/oidc-real-name
• bug/only-admin-should-be-able-to-set-app-templates
• bug/only-send-emails-to-confirmed-email
• bug/open-redirect
• bug/open-redirect-on-signin
• bug/password-reset-emails
• bug/redirect-with-2fa
• bug/redirect_two_multifactor
• bug/rememberable
• bug/remove-reigster-u2f-button
• bug/resend-verification-email-broken
• bug/reset-password
• bug/restrict-usernames
• bug/saml_controller_typo
• bug/saml_idp_update
• bug/saml_slo_2fa
• bug/sanitize-liquid-variables
• bug/secure-cookies
• bug/secure-operators
• bug/security/session-fixation-in-mfa
• bug/security/sso-key-exposure
• bug/sensitive_data_in_audit_logs
• bug/settings-500
• bug/short-timeouts
• bug/sort-recent-logins
• bug/spaces-in-username
• bug/standardise-ui
• bug/track-mfa-failure
• bug/trsvis-use-sudo
• bug/unauthorized-or-unauthenticated
• bug/unconfirmed-primary-email
• bug/user-can-set-unconfirmed-email
• bug/user-creation-emails
• bug/user-search-by-email
• bug/webauthn-base-url
• bug/webhook-creation
• bug/webhook-updates
• bug/webhook_sender_errors
• bug/webhooks-selector-format
• cleanup-unused-controllers
• dep-updates
• dependabot/bundler/audited-5.3.3
• dependabot/bundler/bindata-2.4.10
• dependabot/bundler/doorkeeper-5.6.6
• dependabot/bundler/globalid-1.0.1
• dependabot/bundler/httparty-0.21.0
• dependabot/bundler/loofah-2.19.1
• dependabot/bundler/nokogiri-1.11.4
• dependabot/bundler/nokogiri-1.12.5
• dependabot/bundler/nokogiri-1.13.10
• dependabot/bundler/nokogiri-1.13.2
• dependabot/bundler/nokogiri-1.13.4
• dependabot/bundler/nokogiri-1.13.5
• dependabot/bundler/nokogiri-1.13.6
• dependabot/bundler/nokogiri-1.13.9
• dependabot/bundler/nokogiri-1.14.3
• dependabot/bundler/nokogiri-1.16.2
• dependabot/bundler/puma-4.3.11
• dependabot/bundler/puma-4.3.12
• dependabot/bundler/puma-4.3.8
• dependabot/bundler/puma-4.3.9
• dependabot/bundler/puma-5.6.8
• dependabot/bundler/rack-2.2.3.1
• dependabot/bundler/rack-2.2.6.3
• dependabot/bundler/rack-2.2.6.4
• dependabot/bundler/rack-2.2.8.1
• dependabot/bundler/rails-6.1.7.7
• dependabot/bundler/rails-html-sanitizer-1.4.3
• dependabot/bundler/rails-html-sanitizer-1.4.4
• dependabot/bundler/rexml-3.2.5
• dependabot/bundler/sidekiq-6.4.0
• dependency-update
• dependency-updates
• deps/update
• doc/gitlab-saml
• email-refactoring
• extra-attribute-validation
• featuire/custom-welcome-email
• feature/289
• feature/292
• feature/2fa
• feature/346
• feature/admin-can-reset-user-password
• feature/admin-can-set-password
• feature/admin-disable-mfa
• feature/admin-improvements
• feature/admin-nav-reorg
• feature/admin-settings-split
• feature/admin-ui-rewrite
• feature/admin-user-creation-emails
• feature/api
• feature/audit-log
• feature/audit-log-representation
• feature/auth-request-headers
• feature/basic-auth
• feature/better-2fa
• feature/better-coverage
• feature/better-sso-support
• feature/checkboxes
• feature/configurable-password-length
• feature/configure-cookie-subdomain
• feature/confirm-admin-reset-password
• feature/custom-admin-reset-email
• feature/custom-attributes
• feature/custom-attributes-by-app
• feature/custom-branding
• feature/customizable-saml-timeouts
• feature/dashboard-improvements
• feature/delete-users
• feature/dependency-update
• feature/deprecations
• feature/deps-update
• feature/disable-editing-usernames
• feature/disable-registration
• feature/disable-timeouts
• feature/docker-production
• feature/docs
• feature/edit-arrays
• feature/email
• feature/emails
• feature/expirable-users
• feature/gem-updates
• feature/generated-appid-and-secret
• feature/github-actions
• feature/github-actions-build-images
• feature/gitleaks-ci
• feature/group-enforce-2fa
• feature/hotkey-nav
• feature/icon-titles
• feature/idle_expirable
• feature/improve-mfa-token-button
• feature/installability
• feature/internal-group-permission
• feature/lockable
• feature/login-template
• feature/longer-reset-token-expiration
• feature/loosen-ruby-restriction
• feature/mfa-sudo
• feature/more-liquid-variables
• feature/multiple-emails
• feature/notifications/webhooks
• feature/oidc-password-flow
• feature/only-notify-for-some-attributes
• feature/private-issues
• feature/read-only-user-attributes
• feature/redis-cookies
• feature/resend-admin-welcome-email
• feature/restrict-app-redirects
• feature/restrict-service-providers-to-group
• feature/saml-2fa
• feature/saml-sign-out
• feature/saml_sign_out
• feature/secure-audit-pages
• feature/security-code-csrf
• feature/sentry
• feature/show-saml-sha
• feature/show-webhook-logs
• feature/sidekiq
• feature/sort-audits
• feature/sso-app-improvements
• feature/sso-functional-tests
• feature/sudo
• feature/test-coverage
• feature/test-redis
• feature/test-two-factor-screen
• feature/token-auth
• feature/u2f-with-button
• feature/unified-user-edit
• feature/unregistered-home-is-sign-in
• feature/update-deps
• feature/update-users
• feature/use-redis-for-cache
• feature/user-dashboard
• feature/user-management-enhancements
• feature/user-management-experience
• feature/user-permissions
• feature/user-profile
• feature/user-realname
• feature/user-updates
• feature/username
• feature/webauthn
• feature/webhook-fields
• feature/webhook-improvements
• gem-updates
• main
• master
• reduce-webhook-notifications
• refs/tags/1.0.0.0b1
• refs/tags/1.0.0.0rc1
• refs/tags/v1.0.0
• refs/tags/v1.0.1
• refs/tags/v1.0.10
• refs/tags/v1.0.11
• refs/tags/v1.0.12
• refs/tags/v1.0.13
• refs/tags/v1.0.14
• refs/tags/v1.0.15
• refs/tags/v1.0.16
• refs/tags/v1.0.2
• refs/tags/v1.0.3
• refs/tags/v1.0.4
• refs/tags/v1.0.5
• refs/tags/v1.0.6
• refs/tags/v1.0.7
• refs/tags/v1.0.8
• refs/tags/v1.0.9
• refs/tags/v1.1.0-rc1
• refs/tags/v1.1.0-rc2
• refs/tags/v1.1.0-rc3
• refs/tags/v1.1.0-rc4
• security/dependency-updates
• security/update-dependencies
• stable/1.0-bug/413
• stable/1.0/dependency-updates
• stable/1.0/feature/login-template
• stable/backport-fixes
• stable/bug/webhook-updates
• stable/v1.0/backports
• stable/webhook-detail
• u2f-redirect_to
• updates
• v1.0
• v1.0-bug/463
• v1.0-bug/track-mfa-failure
• v1/feature/admin-disable-2fa
• validate-http-basic-auth

Build # 7494156145

Build Type

push

github

Committed by ChrisMacNaughton

Commit Message

Merge pull request from GHSA-qrqh-v2j6-3g7w

A user failing to provide the correct TOTP code more than
ten consecutive times will have their account locked, forcing
an email reset or time based reset.

Run Details

1702 of 1965 relevant lines covered (86.62%)

64.59 hits per line