TakeV
/
forgejo
Archived
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
This repository has been archived on 2024-01-04. You can view files and clone it, but cannot push or open issues or pull requests.
forgejo/routers/web/auth
History
M Hickford 34f509eb7a
Parse OAuth Authorization header when request omits client secret (#21351) 
This fixes error "unauthorized_client: invalid client secret" when
client includes secret in Authorization header rather than request body.
OAuth spec permits both.

Sanity validation that client id and client secret in request are
consistent with Authorization header.

Improve error descriptions. Error codes remain the same.

Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
Co-authored-by: zeripath <art27@cantab.net>
 		2022-10-07 10:53:49 +08:00
..
2fa.go Refactor auth package (#17962) 2022-01-02 21:12:35 +08:00
auth.go Add support mCaptcha as captcha provider (#20458) 2022-08-10 15:20:10 +02:00
linkaccount.go Add support mCaptcha as captcha provider (#20458) 2022-08-10 15:20:10 +02:00
main_test.go Use a struct as test options (#19393) 2022-04-14 21:58:21 +08:00
oauth.go Parse OAuth Authorization header when request omits client secret (#21351) 2022-10-07 10:53:49 +08:00
oauth_test.go Refactor AssertExistsAndLoadBean to use generics (#20797) 2022-08-16 10:22:25 +08:00
openid.go Add support mCaptcha as captcha provider (#20458) 2022-08-10 15:20:10 +02:00
password.go Make better use of i18n (#20096) 2022-06-26 22:19:22 +08:00
webauthn.go WebAuthn CredentialID field needs to be increased in size (#20530) 2022-07-30 15:25:26 +02:00