More secure, extensible implementation of CORS headers
Core common needs a class that will take a list of domains allowed to access the backend from a browser. The previous implementation still exists in this PR but is marked as deprecated.
Starting on April 8th, The Open Group will require Two Factor Authentication for all GitLab users. For instructions on setting up 2FA, see the Knowledge Article or GitLab Documentation. Note in particular that any HTTPS clones will require the use of a Personal Access Token (rather than a user’s password) once 2FA is enabled.
Core common needs a class that will take a list of domains allowed to access the backend from a browser. The previous implementation still exists in this PR but is marked as deprecated.