tykayn/mastodon
1
0
Fork 0
mirror of https://framagit.org/tykayn/mastodon.git synced 2023-08-25 08:33:12 +02:00
Code Issues Projects Releases Wiki Activity
mastodon/config/initializers
History
ntl-purism f3a93987b6 LDAP & PAM added to OAuth password grant strategy (#7999) (#12390) 
When authenticating via OAuth, the resource owner password grant
strategy is allowed by Mastodon, but (without this PR), it does not
attempt to authenticate against LDAP or PAM. As a result, LDAP or PAM
authenticated users cannot sign in to Mastodon with their
email/password credentials via OAuth (for instance, for native/mobile
app users).

This PR fleshes out the authentication strategy supplied to doorkeeper
in its initializer by looking up the user with LDAP and/or PAM when
devise is configured to use LDAP/PAM backends. It attempts to follow the
same logic as the Auth::SessionsController for handling email/password
credentials.

Note #1: Since this pull request affects an initializer, it's unclear
how to add test automation.

Note #2: The PAM authentication path has not been manually tested. It
was added for completeness sake, and it is hoped that it can be manually
tested before merging.
2019-11-30 19:44:59 +01:00
..
0_post_deployment_migrations.rb
1_hosts.rb
2_whitelist_mode.rb
Add whitelist mode (#11291)
2019-07-30 11:10:46 +02:00
active_model_serializers.rb
Fix ActivityPub context not being dynamically computed (#11746)
2019-09-03 22:52:32 +02:00
application_controller_renderer.rb
assets.rb
backtrace_silencers.rb
blacklists.rb
chewy.rb
Fix records not being indexed sometimes (#12024)
2019-10-01 01:19:11 +02:00
content_security_policy.rb
Fix CSP needlessly allowing blob URLs in script-src (#11620)
2019-08-19 20:36:58 +02:00
cookies_serializer.rb
cors.rb
Use same CORS policy for /@:username and /users/:username (#9485)
2018-12-10 21:39:47 +01:00
delivery_job.rb
Skip mailer job retries when a record no longer exists (#9590)
2018-12-21 06:16:17 +01:00
devise.rb
Fix authentication before 2FA challenge (#11943)
2019-09-24 04:35:36 +02:00
doorkeeper.rb
LDAP & PAM added to OAuth password grant strategy (#7999) (#12390)
2019-11-30 19:44:59 +01:00
fast_blank.rb
ffmpeg.rb
filter_parameter_logging.rb
health_check.rb
Hide error message on /heath (#11947)
2019-09-24 20:28:25 +02:00
http_client_proxy.rb
httplog.rb
inflections.rb
Add a nodeinfo endpoint (#12002)
2019-09-29 21:31:51 +02:00
json_ld.rb
Fix preloaded JSON-LD context for identity not being used (#12138)
2019-10-10 06:48:53 +02:00
kaminari_config.rb
mime_types.rb
oj.rb
omniauth.rb
cas_options :validate_url should be :service_validate_url (#10328)
2019-03-21 04:06:41 +01:00
open_uri_redirection.rb
pagination.rb
paperclip.rb
Fix attachment not being re-downloaded even if file is not stored (#12125)
2019-10-09 07:10:46 +02:00
premailer_rails.rb
rack_attack_logging.rb
Bump rack-attack from 5.4.2 to 6.0.0 (#10599)
2019-05-03 16:16:11 +02:00
rack_attack.rb
Change rate limit for media proxy (#11814)
2019-09-13 16:02:52 +02:00
redis.rb
session_activations.rb
session_store.rb
Disable Same-Site cookie implementation to fix SSO issues on WebKit browsers (#9819)
2019-01-15 23:11:46 +01:00
sidekiq.rb
simple_form.rb
Change preferences page into appearance, notifications, and other (#10977)
2019-06-07 03:39:24 +02:00
single_user_mode.rb
statsd.rb
Remove unused StatsD code and expose StatsD as a global variable (#11232)
2019-07-02 11:34:39 +02:00
stoplight.rb
Fix stoplight logging to stderr separate from Rails logger (#10624)
2019-04-23 04:39:48 +02:00
strong_migrations.rb
suppress_csrf_warnings.rb
trusted_proxies.rb
twitter_regex.rb
Fix URL linkifier grabbing full-width spaces and quotations (#9997)
2019-02-09 20:13:11 +01:00
vapid.rb
wrap_parameters.rb