Document file upload random uuid security

63a1a581 · Drew Blessing · 4e5897f5 · 63a1a581 · 63a1a581
Commit 63a1a581 authored Dec 10, 2015 by Drew Blessing
Hide whitespace changes
Inline Side-by-side

Showing with 13 additions and 1 deletion

doc/security/README.md doc/security/README.md +2 -1

doc/security/user_file_uploads.md doc/security/user_file_uploads.md +11 -0

No files found.
--- a/doc/security/README.md
+++ b/doc/security/README.md
@@ -4,4 +4,5 @@
 - [Rack attack](rack_attack.md)
 - [Web Hooks and insecure internal web services](webhooks.md)
 - [Information exclusivity](information_exclusivity.md)
- [Reset your root password](reset_root_password.md)
\ No newline at end of file
+- [Reset your root password](reset_root_password.md)
+- [User File Uploads](user_file_uploads.md)
--- a/doc/security/user_file_uploads.md
+++ b/doc/security/user_file_uploads.md
+# User File Uploads
+
+Images attached to issues, merge requests or comments do not require authentication
+to be viewed if someone knows the direct URL. This direct URL contains a random
+32-character ID that prevents unauthorized people from guessing the URL to an
+image containing sensitive information. We don't enable authentication because
+these images need to be visible in the body of notification emails, which are
+often read from email clients that are not authenticated with GitLab, like
+Outlook, Apple Mail, or the Mail app on your mobile device.
+
+Note that non-image attachments do require authentication to be viewed.