Google Git
Sign in
gerrit / gerrit / d2ab0cda62799face3caa1973a57849d2f337f00
commitd2ab0cda62799face3caa1973a57849d2f337f00[log] [tgz]
authorMike Gouline <mike.gouline@neonstingray.com>Tue Dec 18 11:20:53 2012 +1100
committerMike Gouline <mike.gouline@neonstingray.com>Mon Jan 14 09:53:22 2013 +1100
tree9173eb03df0c602e538b3655cca48ac973a37f8f
parent2c75536a736c0a5d5431835bd1e67342b1046a20 [diff]
Implements OpenID domain filtering

Adds ability to only allow email addresses under specific domains to
be used for OpenID login.

The allowed domains can be configured in etc/gerrit.config under
section [auth] as "openIdDomain". The values are then stored across
GerritConfig and AuthConfig. If at least one openIdDomain is
configured, OpenIdServiceImpl checks for a match on the email
address used for login and returns error otherwise.

The need for this was described in Google Groups to limit OpenID to
Google Apps domain(s) of a company when using Gerrit for internal
development.

Change-Id: I549059e7ecea827009b632ef2e38d2ccdddf7cfb
3 files changed
tree: 9173eb03df0c602e538b3655cca48ac973a37f8f
  1. contrib/
  2. Documentation/
  3. gerrit-antlr/
  4. gerrit-cache-h2/
  5. gerrit-common/
  6. gerrit-extension-api/
  7. gerrit-gwtdebug/
  8. gerrit-gwtui/
  9. gerrit-httpd/
  10. gerrit-launcher/
  11. gerrit-main/
  12. gerrit-openid/
  13. gerrit-package-plugins/
  14. gerrit-patch-commonsnet/
  15. gerrit-patch-jgit/
  16. gerrit-pgm/
  17. gerrit-plugin-api/
  18. gerrit-plugin-archetype/
  19. gerrit-plugin-gwt-archetype/
  20. gerrit-plugin-gwtui/
  21. gerrit-plugin-js-archetype/
  22. gerrit-prettify/
  23. gerrit-reviewdb/
  24. gerrit-server/
  25. gerrit-sshd/
  26. gerrit-util-cli/
  27. gerrit-util-ssl/
  28. gerrit-war/
  29. ReleaseNotes/
  30. tools/
  31. .gitignore
  32. COPYING
  33. INSTALL
  34. pom.xml
  35. SUBMITTING_PATCHES