discourse/lib/auth
Sam ea1007e954 FEATURE: add support for same site cookies
Defaults to Lax, can be disabled or set to Strict.

Strict will only work if you require login and use SSO. Otherwise when clicking on links to your site you will appear logged out till you refresh the page.
2017-02-23 12:01:28 -05:00
..
authenticator.rb
current_user_provider.rb SECURITY: don't grant same privileges to user_api and api access 2016-12-16 12:05:43 +11:00
default_current_user_provider.rb FEATURE: add support for same site cookies 2017-02-23 12:01:28 -05:00
facebook_authenticator.rb FIX: download avatar from facebook/twitter in a job in order to prevent hangs when avatars are huge 2016-10-24 17:15:13 +02:00
github_authenticator.rb Add support for email whitelist/blacklist to GitHub auth 2016-09-22 11:31:10 -07:00
google_oauth2_authenticator.rb FIX: protect against future regressions of google omniauth 2016-11-07 12:48:00 +11:00
instagram_authenticator.rb Update instagram_authenticator.rb 2016-02-26 11:37:48 +10:00
oauth2_authenticator.rb
open_id_authenticator.rb FEATURE: raise an exception when the email is missing in the OpenId callback 2014-08-07 19:28:50 +02:00
result.rb Ability to skip email validation via a plugin 2016-09-07 14:05:46 -04:00
twitter_authenticator.rb FIX: download avatar from facebook/twitter in a job in order to prevent hangs when avatars are huge 2016-10-24 17:15:13 +02:00