• Drew Blessing's avatar
    Reduce hits to LDAP on Git HTTP auth by reordering auth mechanisms · 29414ab0
    Drew Blessing authored
    We accept half a dozen different authentication mechanisms for
    Git over HTTP. Fairly high in the list we were checking user
    password, which would also query LDAP. In the case of LFS,
    OAuth tokens or personal access tokens, we were unnecessarily
    hitting LDAP when the authentication will not succeed. This
    was causing some LDAP/AD systems to lock the account. Now,
    user password authentication is the last mechanism tried since
    it's the most expensive.
    29414ab0
24462-reduce_ldap_queries_for_lfs.yml 106 Bytes