discourse

Commit Graph

Author	SHA1	Message	Date
Krzysztof Kotlarek	d8360b4c82	SECURITY: vulnerability in WildcardUrlChecker	2019-12-13 09:29:09 -05:00
Sam Saffron	4ea21fa2d0	DEV: use #frozen_string_literal: true on all spec This change both speeds up specs (less strings to allocate) and helps catch cases where methods in Discourse are mutating inputs. Overall we will be migrating everything to use #frozen_string_literal: true it will take a while, but this is the first and safest move in this direction	2019-04-30 10:27:42 +10:00
Maja Komel	27e732a58d	FEATURE: allow multiple secrets for Discourse SSO provider This splits off the logic between SSO keys used incoming vs outgoing, it allows to far better restrict who is allowed to log in using a site. This allows for better auditing of the SSO provider feature	2018-10-15 16:03:53 +11:00

Author

SHA1

Message

Date

Krzysztof Kotlarek

d8360b4c82

SECURITY: vulnerability in WildcardUrlChecker

2019-12-13 09:29:09 -05:00

Sam Saffron

4ea21fa2d0

DEV: use #frozen_string_literal: true on all spec

This change both speeds up specs (less strings to allocate) and helps catch
cases where methods in Discourse are mutating inputs.

Overall we will be migrating everything to use #frozen_string_literal: true
it will take a while, but this is the first and safest move in this direction

2019-04-30 10:27:42 +10:00

Maja Komel

27e732a58d

FEATURE: allow multiple secrets for Discourse SSO provider

This splits off the logic between SSO keys used incoming vs outgoing, it allows to far better restrict who is allowed to log in using a site.

This allows for better auditing of the SSO provider feature

2018-10-15 16:03:53 +11:00

3 Commits