Discource-C/discourse
1
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-02-07 11:58:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
discourse/lib/auth
History
David Taylor 17fcdd60c1
FIX: Avoid clock skew issues when logging in with Google (#11442) 
All the data we need for the `info` and `credentials` auth hash
are obtained via the user info API, not the JWT. Using and verifying
the JWT can fail due to clock skew, so let's skip it completely.

PR opened to fix the upstream issue at https://github.com/zquestz/omniauth-google-oauth2/pull/392
2020-12-09 09:09:31 +00:00
..
auth_provider.rb
FEATURE: Use full page redirection for all external auth methods (#8092)
2019-10-08 12:10:43 +01:00
authenticator.rb
SECURITY: Add confirmation screen when connecting associated accounts
2019-07-24 10:28:15 +01:00
current_user_provider.rb
DEV: enable frozen string literal on all files
2019-05-13 09:31:32 +08:00
default_current_user_provider.rb
REFACTOR: Introduce RouteMatcher class
2020-10-19 10:40:55 +01:00
discord_authenticator.rb
FEATURE: Login with Discord (#8053)
2019-08-30 10:54:19 +01:00
facebook_authenticator.rb
DEV: enable frozen string literal on all files
2019-05-13 09:31:32 +08:00
github_authenticator.rb
DEV: Migrate Github authentication to ManagedAuthenticator (#11170)
2020-11-10 10:09:15 +00:00
google_oauth2_authenticator.rb
FIX: Avoid clock skew issues when logging in with Google (#11442)
2020-12-09 09:09:31 +00:00
managed_authenticator.rb
FEATURE: Allow /u/by-external to work for all managed authenticators (#11168)
2020-11-10 10:41:46 +00:00
oauth2_authenticator.rb
DEV: enable frozen string literal on all files
2019-05-13 09:31:32 +08:00
result.rb
FEATURE: sso_overrides_(email|username|name) for all auth methods
2020-07-06 10:18:45 +01:00
twitter_authenticator.rb
DEV: enable frozen string literal on all files
2019-05-13 09:31:32 +08:00