0
0
instrumental/app/controllers/auth
Claire f1700523f1
Merge pull request from GHSA-vm39-j3vx-pch3
* Prevent different identities from a same SSO provider from accessing a same account

* Lock auth provider changes behind `ALLOW_UNSAFE_AUTH_PROVIDER_REATTACH=true`

* Rename methods to avoid confusion between OAuth and OmniAuth
2024-02-14 15:16:07 +01:00
..
challenges_controller.rb Add password challenge to 2FA settings, e-mail notifications (#11878) 2019-09-18 16:37:27 +02:00
confirmations_controller.rb Add users index on unconfirmed_email (#25672) 2023-07-02 19:41:35 +02:00
omniauth_callbacks_controller.rb Merge pull request from GHSA-vm39-j3vx-pch3 2024-02-14 15:16:07 +01:00
passwords_controller.rb Revoke all authorized applications on password reset (#21325) 2022-12-15 15:47:06 +01:00
registrations_controller.rb Order sessions by most-recent to least-recently updated (#25005) 2023-05-22 11:40:00 +02:00
sessions_controller.rb Add rate-limit of TOTP authentication attempts at controller level (#28801) 2024-01-24 15:31:13 +01:00
setup_controller.rb Add progress indicator to sign-up flow (#24545) 2023-04-16 07:01:24 +02:00