{"id":7441,"date":"2025-09-15T09:56:10","date_gmt":"2025-09-15T09:56:10","guid":{"rendered":"https:\/\/gitprotect.io\/blog\/?p=7441"},"modified":"2025-09-24T07:10:24","modified_gmt":"2025-09-24T07:10:24","slug":"gitprotect-2-0-5-more-access-control-and-predictability","status":"publish","type":"post","link":"https:\/\/gitprotect.io\/blog\/gitprotect-2-0-5-more-access-control-and-predictability\/","title":{"rendered":"GitProtect 2.0.5: More Access Control and Predictability"},"content":{"rendered":"\n

GitProtect 2.0.5 version focuses on a more predictable recovery and access control. The console now enforces 2FA when users enter through SSO or SAML. So, access to backup and restore actions requires a second factor at the point of use. Additionally, bulk restores no longer depend on a single token\u2019s rate limit, and Jira jobs are less brittle as well, with automatic detection of expired Personal Access Tokens.<\/strong><\/p>\n\n\n\n\n\n\n\n

The new version is not a redesign. It\u2019s tightening the places that may usually creak under more pressure. Learn more about the details below.<\/p>\n\n\n\n

Platform-level 2FA for SSO\/SAML logins<\/strong><\/h2>\n\n\n\n

Until now, 2FA lived mostly at the identity provider. In 2.0.5, GitProtect asks for a second factor at the console even when the user’s access is via SSO or SAML. That closes the common gap where a leaked session token or a loose IdP policy lets someone straight into backup and restore controls.<\/p>\n\n\n

\n
\"2FA<\/figure><\/div>\n\n\n

The direction is clear: make 2FA universal, then remove exceptions that linger forever. You\u2019ll notice it most on bad days, when one extra prompt stops a destructive change from going through.<\/p>\n\n\n\n

\ud83c\udfa5 Are you a visual learner? Check how to set up your 2FA and ensure even better security of your DevOps data:<\/em><\/strong><\/p>\n\n\n\n

\n