hedgedoc/lib
Sheogorath ef86bf5cba
Use API key instead of clientSecret
As recently discovered we send the clientSecret to the webclient which
is potentionally dangerous. This patch should fix the problem and
replace the clientSecret with the originally intended and correct way to
implement it using the API key.

Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
2018-04-13 09:38:59 +02:00
..
config Use API key instead of clientSecret 2018-04-13 09:38:59 +02:00
migrations
models Change config to camel case with backwards compatibility 2018-03-25 19:08:14 +02:00
ot Change config to camel case with backwards compatibility 2018-03-25 19:08:14 +02:00
web Change config to camel case with backwards compatibility 2018-03-25 19:08:14 +02:00
workers
csp.js Fix CSP for disqus and Google Analytics 2018-03-30 16:33:52 +02:00
history.js
letter-avatars.js
logger.js
realtime.js Change config to camel case with backwards compatibility 2018-03-25 19:08:14 +02:00
response.js Fix CSP for disqus and Google Analytics 2018-03-30 16:33:52 +02:00
utils.js