50 Commits (0f787b9d28dcf508a41670e2bddd1e7096e97663)

Author SHA1 Message Date
Francis Murillo 3a11a90dd3 Revoke all authorized applications on password reset (#21325)
2 years ago
Claire d28d7d4b72 Fix suspicious sign-in mails never being sent (#18599)
2 years ago
Eugen Rochko f982d56b4e Remove sign-in token authentication, instead send e-mail about new sign-in (#17970)
3 years ago
Claire 1f07ab014d Refactor and improve tests (#17386)
3 years ago
Eugen Rochko 7b3972c270 Remove IP tracking columns from users table (#16409)
3 years ago
Claire 1dbc4a8611 Fix webauthn secure key authentication (#16792)
3 years ago
Claire 84566f17de Fix authentication failures after going halfway through a sign-in attempt (#16607)
3 years ago
Claire db57eaf207 Change confirmations controller to redirect to / for approved users (#16151)
4 years ago
Eugen Rochko ade70733f7 Add `details` to error response for `POST /api/v1/accounts` in REST API (#15803)
4 years ago
ThibG f894bb9220 Fix external user creation failing when invite request text is required (#15405)
4 years ago
ThibG e1ef5f3b31 Add honeypot fields and minimum fill-out time for sign-up form (#15276)
4 years ago
Eugen Rochko 90faa8039c Fix 2FA/sign-in token sessions being valid after password change (#14802)
4 years ago
Eugen Rochko e514304a76 Change account suspensions to be reversible by default (#14726)
4 years ago
santiagorodriguez96 f142983484 Add WebAuthn as an alternative 2FA method (#14466)
4 years ago
Eugen Rochko 2dbf6bc5ad Add e-mail-based sign in challenge for users with disabled 2FA (#14013)
4 years ago
ThibG ddd9bad7f1 Fix sign-ups without checked user agreement being accepted through the web form (#13088)
5 years ago
Eugen Rochko 1781358bd9 Add password challenge to 2FA settings, e-mail notifications (#11878)
5 years ago
Eugen Rochko 8eb0d880cb Fix 2FA challenge and password challenge for non-database users (#11831)
5 years ago
Eugen Rochko 6be7b414e2 Change unconfirmed user login behaviour (#11375)
5 years ago
ThibG af3971a0e6 Check that an invite link is valid before bypassing approval mode (#10657)
6 years ago
Eugen Rochko 73fb7bfa0f Admission-based registrations mode (#10250)
6 years ago
takayamaki 17229858c8 fix: Execute PAM authentication tests on CircleCI (#9029)
6 years ago
Eugen Rochko 7e8733a518 Do not test PAM authentication by default (#9027)
6 years ago
aus-social a53bcb6213 Lint pass (#8876)
6 years ago
Eugen Rochko 72a8ca84e0 Add force_login option to OAuth authorize page (#8655)
6 years ago
Shuhei Kitagawa 2828f36415 Add missing tests for confirmations controller (#7866)
6 years ago
Yamagishi Kazutoshi 3637c4983b Reset locale on registration tests (#7219)
7 years ago
Yamagishi Kazutoshi 7da649efb4 Use raw status code on have_http_status (#7214)
7 years ago
Alexander 8a9da4c414 update gem, test pam authentication (#7028)
7 years ago
Patrick Figel bc5487a1c2 Fix email confirmation link not updating email (#6187)
7 years ago
Eugen Rochko 6628ea4a82 Default follows for new users (#4871)
7 years ago
Eugen Rochko fd69694749 Add "signed in as" header to some pages (#4523)
7 years ago
nullkal 62b92a4c0a Redirect to PasswordController#new when reset_password_token is invalid (#4506)
7 years ago
Akihiko Odaki (@fn_aki@pawoo.net) 4ca14209d1 Cover Auth::RegistrationsController more (#3353)
7 years ago
René Klačan ecdf17a2d7 Make sure email is case insensitive on all places (#3688)
8 years ago
Akihiko Odaki 587f2d0b1f Spec Auth::ConfirmationsController (#3348)
8 years ago
Akihiko Odaki 503298d89b Spec Auth::PasswordsController (#3352)
8 years ago
Akinori MUSHA 8a5d3b2e5d Go to root after login in single user mode (#3289)
8 years ago
Eugen Rochko b886ecea5c Fix Devise destroy method being available to delete user record (#3266)
8 years ago
Matt Jankowski 129e06f0b3 Auth sign out (#2511)
8 years ago
Matt Jankowski b17d7a1f85 Catch error when server decryption fails on 2FA (#2512)
8 years ago
alpaca-tc 31d49716c6 Localize with i18n for Devise::FailureApp (#2309)
8 years ago
saturday06 abf70be71e Assign user locale on signup (#1982)
8 years ago
Patrick Figel 15b393201e Add recovery code support for two-factor auth (#1773)
8 years ago
Eugen 47a3702db4 Fix /api/v1/accounts/update_credentials tests (#1357)
8 years ago
Eugen Rochko 800f6cf6a3 Fix #390 - fix redirect after sign-up (to login page instead of homepage)
8 years ago
Eugen Rochko 08ed85b3cf Fix #148 - Devise mailer fixed, test spec added so it won't slip past again
8 years ago
Eugen Rochko 7e14eefc81 Replace logo, fix #57 - delete/unreblog/unfavourite API, fix #45 - app
8 years ago
Eugen Rochko 10ba09f546 Upgrade to Rails 5.0.0.1
8 years ago
Eugen Rochko ff2cbc0753 Remember me enabled by default
9 years ago