| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2019-02-28 | Made auth customization be runtime-configurable. | Ivan Tashkinov | |
| 2019-02-26 | Database authenticator behaviour / Pleroma implementation refactoring. | Ivan Tashkinov | |
| 2019-02-22 | OpenLDAP support | link0ff | |
| 2019-02-21 | Auth customization support. | Ivan Tashkinov | |
| OAuthController#create_authorization user retrieval / creation, errors handling, template & layout selection. | |||
| 2019-02-19 | [#468] Merged `upstream/develop`. | Ivan Tashkinov | |
| 2019-02-18 | Merge branch 'feature/add-oauth-tokens-endpoint' into 'develop' | kaniini | |
| Add OAuth tokens endpoint See merge request pleroma/pleroma!805 | |||
| 2019-02-17 | Render only "id", "valid_until" and "app_name" in TokenView | Maxim Filippov | |
| 2019-02-17 | [#468] Merged `upstream/develop`, resolved conflicts. | Ivan Tashkinov | |
| 2019-02-17 | [#468] Refactored OAuth scopes' defaults & missing selection handling. | Ivan Tashkinov | |
| 2019-02-15 | [#468] Defined OAuth restrictions for all applicable routes. | Ivan Tashkinov | |
| Improved missing "scopes" param handling. Allowed "any of" / "all of" mode specification in OAuthScopesPlug. Fixed auth UI / behavior when user selects no permissions at /oauth/authorize. | |||
| 2019-02-14 | [#468] Refactored OAuth scopes parsing / defaults handling. | Ivan Tashkinov | |
| 2019-02-14 | oauth: never use base64 padding when returning tokens to applications | William Pitcock | |
| The normal Base64 alphabet uses the equals sign (=) as a padding character. Since Base64 strings are self-synchronizing, padding characters are unnecessary, so don't generate them in the first place. | |||
| 2019-02-14 | [#468] User UI for OAuth permissions restriction. Standardized storage ↵ | Ivan Tashkinov | |
| format for `scopes` fields, updated usages. | |||
| 2019-02-13 | Update token.ex | Maxim Filippov | |
| 2019-02-13 | Add revoke token | Maxim Filippov | |
| 2019-02-13 | Add OAuth tokens endpoint | Maxim Filippov | |
| 2019-02-09 | de-group import/s | Haelwenn (lanodan) Monnier | |
| 2019-02-09 | de-group alias/es | Haelwenn (lanodan) Monnier | |
| 2019-02-09 | [#468] Prototype of OAuth2 scopes support. TwitterAPI scope restrictions. | Ivan Tashkinov | |
| 2019-02-07 | OAuth2 security fixes: redirect URI validation, "Mastodon-Local" security ↵ | Ivan Tashkinov | |
| breach fix. (`POST /api/v1/apps` could create "Mastodon-Local" app wth any redirect_uris, and if that happened before /web/login is accessed for the first time then Pleroma used this externally created record with arbitrary redirect_uris and client_secret known by creator). | |||
| 2019-01-28 | Correctly handle invalid credentials on auth login. | lain | |
| Closes #407 | |||
| 2019-01-23 | Flake Ids for Users and Activities | href | |
| 2018-12-31 | update copyright years to 2019 | William Pitcock | |
| 2018-12-23 | add license boilerplate to pleroma core | William Pitcock | |
| 2018-12-18 | [#114] Added email confirmation resend action. Added tests | Ivan Tashkinov | |
| for registration, authentication, email confirmation, confirmation resending. Made admin methods create confirmed users. | |||
| 2018-12-18 | [#114] Account confirmation email, registration as unconfirmed ↵ | Ivan Tashkinov | |
| (config-based), auth prevention for unconfirmed. | |||
| 2018-12-09 | fix compile warnings | Maksim Pechnikov | |
| 2018-11-11 | oauth: fix token decode regression | William Pitcock | |
| 2018-11-06 | Unify Mastodon Login with OAuth login. | lain | |
| This removes duplication in the login code. | |||
| 2018-10-14 | Delete Tokens and Authorizations on password change | Haelwenn (lanodan) Monnier | |
| Closes: https://git.pleroma.social/pleroma/pleroma/issues/320 | |||
| 2018-09-09 | TASK: Fix formatting | Dominique Feyer | |
| 2018-09-09 | Add missing URL encoding in create authorization redirect | Dominique Feyer | |
| 2018-09-01 | OAuth: Support /revoke endpoint for revoking tokens | Martin Kühl | |
| (for compatibility with Mastodon) | |||
| 2018-09-01 | OAuth: Set `created_at` in token exchange response | Martin Kühl | |
| (for compatibility with Mastodon) | |||
| 2018-06-14 | Merge branch 'bugfix/oauth2-param-name' into 'develop' | lambda | |
| oauth: support either name or username parameter with grant_type=password Closes #180 See merge request pleroma/pleroma!219 | |||
| 2018-06-14 | oauth: fix password-based login when username is email address | William Pitcock | |
| closes #199 | |||
| 2018-06-14 | oauth: support either name or username parameter with grant_type=password | William Pitcock | |
| closes #180 | |||
| 2018-06-06 | Make token exchange return errors with 400 as status code | D Anzorge | |
| 2018-06-04 | Make OAuth token endpoint work with HTTP Basic auth | D Anzorge | |
| client_id/client_secret can now be supplied in an Authorization header | |||
| 2018-05-07 | More warning fixes. | lain | |
| 2018-04-21 | Formatting fixes. | lain | |
| 2018-04-18 | MastoAPI and OAuth: allow login with either email or username. | eal | |
| 2018-03-30 | Format the code. | lain | |
| 2018-03-23 | oauth: implement grant_type=password for single-page apps | William Pitcock | |
| 2018-03-22 | Fix test. | lain | |
| 2018-03-19 | cap again | Mark Felder | |
| 2018-03-19 | start with a capital | Mark Felder | |
| 2018-02-08 | Changed fallback controller to handle all cases from OAuthController | Calv Collins | |
| 2018-02-08 | Create action_fallback for username/password incorrect input | Calv Collins | |
| 2017-11-10 | Handle existing redirect params. | Roger Braun | |
 |
index : pleroma.git | |
| [no description] |
| aboutsummaryrefslogtreecommitdiff |