Skip to content

Splitting git user

Currently the git user runs the main components of GitLab:

  • the rails application,
  • gitaly and all repositories,
  • gitlab-shell for ssh logins, and
  • ansible with all secrets.

This means a ssh login can directly access any secret. And due to how ssh calls tools, it's hard to implement other restrictions. The same is true for gitaly, like the current open RCE in git.

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information