This repository has been archived on 2023-03-18. You can view files and clone it. You cannot open issues or pull requests or push a commit.

Sam 6ff309aa80 SECURITY: don't grant same privileges to user_api and api access ...

User API is no longer gets bypasses that standard API gets.
Only bypasses are CSRF and XHR requirements.

2016-12-16 12:05:43 +11:00

..

authenticator.rb

…

current_user_provider.rb

SECURITY: don't grant same privileges to user_api and api access

2016-12-16 12:05:43 +11:00

default_current_user_provider.rb

SECURITY: don't grant same privileges to user_api and api access

2016-12-16 12:05:43 +11:00

facebook_authenticator.rb

FIX: download avatar from facebook/twitter in a job in order to prevent hangs when avatars are huge

2016-10-24 17:15:13 +02:00

github_authenticator.rb

Add support for email whitelist/blacklist to GitHub auth

2016-09-22 11:31:10 -07:00

google_oauth2_authenticator.rb

FIX: protect against future regressions of google omniauth

2016-11-07 12:48:00 +11:00

instagram_authenticator.rb

Update instagram_authenticator.rb

2016-02-26 11:37:48 +10:00

oauth2_authenticator.rb

…

open_id_authenticator.rb

…

result.rb

Ability to skip email validation via a plugin

2016-09-07 14:05:46 -04:00

twitter_authenticator.rb

FIX: download avatar from facebook/twitter in a job in order to prevent hangs when avatars are huge

2016-10-24 17:15:13 +02:00