Discource-C
/
discourse
mirror of https://github.com/discourse/discourse.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
discourse/lib/auth
History
David Taylor 17fcdd60c1
FIX: Avoid clock skew issues when logging in with Google (#11442) 
All the data we need for the `info` and `credentials` auth hash
are obtained via the user info API, not the JWT. Using and verifying
the JWT can fail due to clock skew, so let's skip it completely.

PR opened to fix the upstream issue at https://github.com/zquestz/omniauth-google-oauth2/pull/392
 		2020-12-09 09:09:31 +00:00
..
auth_provider.rb FEATURE: Use full page redirection for all external auth methods (#8092) 2019-10-08 12:10:43 +01:00
authenticator.rb SECURITY: Add confirmation screen when connecting associated accounts 2019-07-24 10:28:15 +01:00
current_user_provider.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
default_current_user_provider.rb REFACTOR: Introduce RouteMatcher class 2020-10-19 10:40:55 +01:00
discord_authenticator.rb FEATURE: Login with Discord (#8053) 2019-08-30 10:54:19 +01:00
facebook_authenticator.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
github_authenticator.rb DEV: Migrate Github authentication to ManagedAuthenticator (#11170) 2020-11-10 10:09:15 +00:00
google_oauth2_authenticator.rb FIX: Avoid clock skew issues when logging in with Google (#11442) 2020-12-09 09:09:31 +00:00
managed_authenticator.rb FEATURE: Allow /u/by-external to work for all managed authenticators (#11168) 2020-11-10 10:41:46 +00:00
oauth2_authenticator.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
result.rb FEATURE: sso_overrides_(email|username|name) for all auth methods 2020-07-06 10:18:45 +01:00
twitter_authenticator.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00