ash-project/ash_authentication
1
0
Fork 0
mirror of https://github.com/team-alembic/ash_authentication.git synced 2024-09-20 05:13:10 +12:00
Code Issues Projects Releases Packages Wiki Activity
ash_authentication/test/support/example
History
James Harton ca3dac3878
fix: don't allow special purpose tokens to be used for sign in. (#191) 
This fixes a security issue where someone in possession of a special purpose token (reset, confirmation, magic link, etc) would be able to access an API using this token.  We strongly encourage you to upgrade.

Closes #190.
2023-02-12 21:14:16 +13:00
..
auth_plug.ex feat: Add token-required-for-authentication feature. (#116) 2023-01-11 15:12:53 +13:00
current_user_read.ex feat(Ash.PlugHelpers): Support standard actor configuration. (#16) 2022-10-31 16:43:00 +13:00
generic_oauth_change.ex feat: Add support and documentation for custom strategies. (#154) 2023-01-30 13:16:37 +13:00
only_marties_at_the_party.ex improvement(Strategy.Custom): handle custom strategies as extensions. (#183) 2023-02-08 16:10:28 +13:00
registry.ex feat: Add token-required-for-authentication feature. (#116) 2023-01-11 15:12:53 +13:00
repo.ex feat(PasswordAuthentication): Registration and authentication with local credentials (#4) 2022-10-25 11:07:07 +13:00
schema.ex improvement!: Major redesign of DSL and code structure. (#35) 2022-11-23 09:09:41 +13:00
token.ex improvement(TokenResource)!: Move TokenRevocation -> TokenResource. 2022-12-01 08:41:49 +13:00
user.ex feat: Add new "magic link" authentication strategy. (#184) 2023-02-09 21:05:49 +13:00
user_identity.ex improvement!: Major redesign of DSL and code structure. (#35) 2022-11-23 09:09:41 +13:00
user_with_token_required.ex fix: don't allow special purpose tokens to be used for sign in. (#191) 2023-02-12 21:14:16 +13:00