Merge branch 'ce-jej/fix-sso-enforced-docker-registry-auth' into 'master'

[CE backport] Enforced SSO shouldn't break container registry authentication See merge request gitlab-org/gitlab-ce!32110

Merge branch 'ce-jej/fix-sso-enforced-docker-registry-auth' into 'master'
[CE backport] Enforced SSO shouldn't break container registry authentication See merge request gitlab-org/gitlab-ce!32110
24ff249d · Kamil Trzciński · 20d38fed · e00b07b9 · 24ff249d · 24ff249d
Commit 24ff249d authored Aug 23, 2019 by Kamil Trzciński
Hide whitespace changes
Inline Side-by-side

Showing with 9 additions and 0 deletions

app/controllers/jwt_controller.rb app/controllers/jwt_controller.rb +1 -0

spec/requests/jwt_controller_spec.rb spec/requests/jwt_controller_spec.rb +8 -0

No files found.
--- a/app/controllers/jwt_controller.rb
+++ b/app/controllers/jwt_controller.rb
 # frozen_string_literal: true

 class JwtController < ApplicationController
+  skip_around_action :set_session_storage
  skip_before_action :authenticate_user!
  skip_before_action :verify_authenticity_token
  before_action :authenticate_project_or_user

--- a/spec/requests/jwt_controller_spec.rb
+++ b/spec/requests/jwt_controller_spec.rb
@@ -108,6 +108,14 @@ describe JwtController do
          end
        end
      end
+
+      it 'does not cause session based checks to be activated' do
+        expect(Gitlab::Session).not_to receive(:with_session)
+
+        get '/jwt/auth', params: parameters, headers: headers
+
+        expect(response).to have_gitlab_http_status(200)
+      end
    end

    context 'using invalid login' do