We’re running our CE behind a firewall with a JumpCloud SSO via SAML.
We’d like to ensure that you can’t see anything via the web interface without being SAML authenticated, but it seems like if anything is public, then it can be seen without auth, even tho I set restricted visibility on public.
The SAML provider only grants auth to users of an “svn” group, but then our users don’t get automatic membership to our “Dev” group in gitlab.
-
Is there a way to prevent any kind of access outside the sign-in page to anyone who is not signed in?
-
Is there a way to mark a GitLab group as a default group so that SAML users are automatically added? Or a way to map a saml group <-> gitlab group?