debian-mirror-gitlab/config/initializers/rack_attack_git_basic_auth.rb

15 lines
577 B
Ruby
Raw Normal View History

2019-12-26 22:10:19 +05:30
# Tell the Rack::Attack Rack middleware to maintain an IP blacklist.
# We update the blacklist in Gitlab::Auth::IpRateLimiter.
Rack::Attack.blocklist('Git HTTP Basic Auth') do |req|
rate_limiter = Gitlab::Auth::IpRateLimiter.new(req.ip)
2016-06-02 11:05:42 +05:30
2019-12-26 22:10:19 +05:30
next false if !rate_limiter.enabled? || rate_limiter.trusted_ip?
Rack::Attack::Allow2Ban.filter(req.ip, Gitlab.config.rack_attack.git_basic_auth) do
# This block only gets run if the IP was not already banned.
# Return false, meaning that we do not see anything wrong with the
# request at this time
false
2015-04-26 12:48:37 +05:30
end
end