GitLab now enforces expiry dates on tokens that originally had no set expiration date. Those tokens were given an expiration date of one year later. Please review your personal access tokens, project access tokens, and group access tokens to ensure you are aware of upcoming expirations. Administrators of GitLab can find more information on how to identify and mitigate interruption in our documentation.

cri_auth: add 2FA support

We need to sort out a few things :

2FA should be mandatory for admins
OIDC client should know when a user signed in with 2FA
OIDC client should allow a user to sign in with 2FA disabled (ACU's MCQ or exams for instance) even when the user activated it

Edited Sep 01, 2020 by Marin Hannache

Admin message

cri_auth: add 2FA support