github/hedgedoc
1
0
Fork 0
mirror of https://github.com/hedgedoc/hedgedoc.git synced 2024-11-22 01:36:29 -05:00
Code Issues Projects Releases Packages Wiki Activity
hedgedoc/lib
History
Dexter Chua a88b4aff2a Generic OAuth2: Set state: true 
The OAuth2 specification RECOMMENDS setting the state to protect against
CSRF attacks. Some OAuth2 providers (e.g. ORY Hydra) refuse to
authenticate without the state set.

This is a cherry-pick of 852868419d.

Signed-off-by: haslersn <sebastian.hasler@gmx.net>
2020-10-22 22:50:34 +02:00
..
config Update documentation and messages to new default value 2020-09-08 09:58:15 +02:00
migrations Add fix for missing deletion of notes on user-deletion request 2020-03-21 16:14:43 +01:00
models Fixed meta parsing of lang-attribute for using it in the published-view 2020-07-04 03:37:19 +02:00
ot Fix logging in ot module 2018-11-13 23:30:13 +01:00
web Generic OAuth2: Set state: true 2020-10-22 22:50:34 +02:00
workers Rework debug logging 2019-06-08 21:27:29 +02:00
csp.js Add missing unsafe-inline CSP directive 2020-08-23 01:29:53 +02:00
errors.js Fix broken redirect on login 2020-03-21 16:56:09 +01:00
history.js Move note actions to their own file. 2019-10-27 13:51:53 +01:00
letter-avatars.js Fix eslint warnings 2019-05-31 00:30:29 +02:00
logger.js Fix eslint warnings 2019-05-31 00:30:29 +02:00
realtime.js remove unused variable to pass ci testing - #58 2019-10-03 09:24:46 -04:00
response.js Move showPublishNote and publishNoteActions to note controller 2019-10-27 15:23:38 +01:00
utils.js Move slide actions to own file 2019-10-27 14:27:15 +01:00