Rack Attack whitelist

skaarj · June 10, 2017, 8:42pm

Hello,

We are using Gitlab installed on the external server with AD authorization. Sometimes our office IP falls to the ban list and I have to delete record from the redis.
I tried to add rack_attack_git_basic_auth configuration to gitlab.rb with our office IP in ip_whitelist
https://gitlab.com/gitlab-org/omnibus-gitlab/blob/master/files/gitlab-config-template/gitlab.rb.template#L291-297,
but after gitlab reconfiguration and restart, authorization breaks with error 500

git clone https://user@gitlab.example.com/projectj/repository.git
Cloning into 'repository'...
Password for 'https://user@gitlab.example.com': 
fatal: unable to access 'https://user@gitlab.example.com/projectj/repository.git/': The requested URL returned error: 500

What am I doing wrong? How to enable whitelisting correctly?

GitLab 9.2.5
GitLab Shell 5.0.4
GitLab Workhorse v2.0.0
GitLab API v4
Git 2.11.1
Ruby 2.3.3p222
Rails 4.2.8
postgresql 9.6.1

Topic		Replies	Views
Ip whitlisting doesn't seem to work Infrastructure as Code & Cloud Native security	0	497	January 27, 2022
How to make Rack-Attack honor X-Forwarded-For? How to Use GitLab	1	932	November 5, 2024
403 errors on self-hosted gitlab How to Use GitLab	7	2979	September 15, 2024
403 forbidden - It works! Just go somewhere else How to Use GitLab	4	727	August 16, 2022
Authorizing with SSH key against gitlab How to Use GitLab	1	3687	October 15, 2017

Rack Attack whitelist

Related topics