Skip to content

G
gitlab-ce
Switch branch/tag
Find file Normal viewHistoryPermalink
rack_attack_git_basic_auth.rb 507 Bytes
Newer Older
Jacob Vosmaer's avatar
Block Git HTTP Basic Auth after 10 failed attempts  
Jacob Vosmaer committed
1 
unless Rails.env.test?
Jacob Vosmaer's avatar
Add more comments explaining how we block IPs  
Jacob Vosmaer committed
2 3 
  # Tell the Rack::Attack Rack middleware to maintain an IP blacklist. We will
  # update the blacklist from Grack::Auth#authenticate_user.
Jacob Vosmaer's avatar
Block Git HTTP Basic Auth after 10 failed attempts  
Jacob Vosmaer committed
4 5 6 7 8 9 10 11 12 
  Rack::Attack.blacklist('Git HTTP Basic Auth') do |req|
    Rack::Attack::Allow2Ban.filter(req.ip, Gitlab.config.rack_attack.git_basic_auth) do
      # This block only gets run if the IP was not already banned.
      # Return false, meaning that we do not see anything wrong with the
      # request at this time
      false
    end
  end
end
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7