GitLab now enforces expiry dates on tokens that originally had no set expiration date. Those tokens were given an expiration date of one year later. Please review your personal access tokens, project access tokens, and group access tokens to ensure you are aware of upcoming expirations. Administrators of GitLab can find more information on how to identify and mitigate interruption in our documentation.

Self sign-up has been disabled due to increased spam activity. If you want to get access, please send an email to a project owner (preferred) or at gitlab(at)nic(dot)cz. We apologize for the inconvenience.

Cancel certificate pinning for our packages

Some of our tools insist certificate pinning which is not handled well (e.g. 2 LE intermediate certificates...). We should get rid of them.

There was already a MR !77 (merged) do handle this but it was insufficient.

This is mainly about /etc/ssl/www_turris_cz_ca.pem file from cznic-cacert-bundle package. I have discovered these packages using this file as a CAFile:

server-uplink (from turris/turris-os-packages>)
haas (also from turris/turris-os-packages>)
netmetr (from turris/netmetr-client>)

Edited Sep 10, 2019 by Vojtech Myslivec