index
:
mastodon
add-publish-button-text-site-setting
backports/4.1
backports/4.2
changelog-update
cleanup/drop-atomuri
deps/shakapacker
drop-ico
drop-redis-below-6.2
feature-color-scheme
feature-counters-on-profiles
feature-fediverse-creator
feature-fediverse-creator-explore
feature-grouped-notifications-ui
feature-hover-cards
feature-libvips
feature-like
feature-link-feed
feature-link-timeline
feature-redirect
feature-separate-hashtags
feature-trend-highlights
feature-update-confirmation-modal
feature/custom-managers
features/add-api-to-get-multiple-accounts-and-statuses
features/banners
features/disable-hover-cards
features/filtered-boolean
features/local-preview-cards
features/local-preview-cards-2nd-take
features/optional-libvips
features/registration-invite-api
features/search-loading-indicator
fix-caniuselite-lockfile
fix-conversations-background
fix-hover-card-delay
fix-hover-card-unfollow-confirmation
fix-mute-buttons
fix-search-results
fix-unusable-hashtag
fix-web-thread-sort
fix-zoom-icon
fix/build-env
fixes/24px-icons
fixes/account-refresh-link-verification
fixes/account-warning-status-delete
fixes/audio-passthrough
fixes/audit-log-external-confirmation
fixes/bingint-integer-confusion
fixes/delivery-to-suspended-accounts
fixes/detect-missing-indexes2
fixes/dismissing-notification-requests-dismisses-too-much
fixes/filtered-notification-bar-does-not-scroll
fixes/filtered-notifications-limited
fixes/grouped-notifications-focus-keyboard-navigation
fixes/import-many-follows-overlap
fixes/instance-name-cutoff
fixes/invalid-otp-secret-error-handling
fixes/lint-fix
fixes/object-has-own-polyfill
fixes/out-of-order-private-posts
fixes/per-user-authorized-fetch
fixes/self-destruct-throttle
fixes/serialization-hardening
fixes/service-worker-caching
fixes/stoplight-redis-6.2
fixes/subdomain-block-4.1.6
fixes/thread-resolve-worker-skip_fetching
fixes/unneeded-requests-to-blocked-domaisn
fixes/web-push-race-condition
gh-readonly-queue/main/pr-28626-1ad908e0c08c236389967d86b4f238f428de9fef
grouped-notifications-frontend
i18n/crowdin/translations
i18n/manage-translations
main
media-attachments-api-limit
nolan/button-a11y
opentelemetry
pg15
prevent-unauthenticated-access-tag-timeline
react18
recursive-cte-grouped-notifications
redesign/hashtag-column-follow-button
redesign/notification-settings
refactor/search-query-parser
releases/v3.5.17
releases/v4.1.13
releases/v4.2.5
remove-profile-directory
renovate/aws-sdk-s3-1.x-lockfile
renovate/babel-monorepo
renovate/browser-6.x-lockfile
renovate/concurrent-ruby-1.x-lockfile
renovate/doorkeeper-5.x-lockfile
renovate/eslint-9.x
renovate/eslint-plugin-promise-7.x
renovate/formatjs-monorepo
renovate/fuzzysort-3.x
renovate/glob-10.x-lockfile
renovate/httplog-1.x
renovate/i18n-1.x
renovate/irb-1.x-lockfile
renovate/jsdom-24.x-lockfile
renovate/json-schema-4.x-lockfile
renovate/lock-file-maintenance
renovate/major-eslint-monorepo
renovate/major-testing-library-monorepo
renovate/nokogiri-1.x-lockfile
renovate/oj-3.x-lockfile
renovate/omniauth-packages
renovate/opentelemetry-ruby-(non-major)
renovate/pg-1.x-lockfile
renovate/pghero-3.x-lockfile
renovate/postcss-8.x-lockfile
renovate/postcss-preset-env-9.x-lockfile
renovate/propshaft-0.x-lockfile
renovate/public_suffix-5.x-lockfile
renovate/rails-ujs-7.x
renovate/react-monorepo
renovate/reduxjs-toolkit-2.x-lockfile
renovate/rubocop-(non-major)
renovate/sanitize-6.x-lockfile
renovate/sass-1.x-lockfile
renovate/simple_form-5.x-lockfile
renovate/test-prof-1.x-lockfile
renovate/use-debounce-10.x-lockfile
renovate/uuid-10.x
renovate/workbox-monorepo
renovate/ws-8.x-lockfile
revert-22019-test-performance
revert-23460-fixes/activitypub-hashtag
revert-severed-relationships-feature
revert-system-check
revert/follow-back-mutual
rubocop-fixes
spike/resolve-urls-on-click
stable-2.4
stable-2.5
stable-2.6
stable-2.7
stable-2.8
stable-2.9
stable-3.0
stable-3.1
stable-3.2
stable-3.3
stable-3.4
stable-3.5
stable-4.0
stable-4.1
stable-4.2
support-rich-oembed
test-new-container-build
tests/flaky-tests-performance-logs
tests/introduce-error
track_unsalvageable_errors
version/v4.3.0-alpha.1
Mirror of https://github.com/tootsuite/mastodon
matthias
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
app
/
controllers
/
auth
Age
Commit message (
Expand
)
Author
2022-12-15
Fix single name variables on controller folder (#20092)
David Vega
2022-12-15
Revoke all authorized applications on password reset (#21325)
Francis Murillo
2022-11-17
Fix form-action CSP directive for external login (#20962)
Claire
2022-11-16
Add 'private' to Cache-Control, match Rails expectations (#20608)
Daniel Axtens
2022-11-07
Fix crash when external auth provider has no display_name set (#19962)
Claire
2022-10-30
Fix invites (#19560)
Claire
2022-10-05
Add server rules to sign-up flow (#19296)
Eugen Rochko
2022-08-24
Add ability to block sign-ups from IP (#19037)
Eugen Rochko
2022-06-21
Fix suspicious sign-in mails never being sent (#18599)
Claire
2022-05-26
Fix confirmation redirect to app without `Location` header (#18523)
Eugen Rochko
2022-04-06
Remove sign-in token authentication, instead send e-mail about new sign-in (#...
Eugen Rochko
2022-03-09
Allow login through OpenID Connect (#16221)
chandrn7
2022-03-01
Change old moderation strikes to be displayed in a separate page (#17566)
Claire
2022-02-14
Add appeals (#17364)
Eugen Rochko
2022-01-23
Add OMNIAUTH_ONLY environment variable to enforce externa log-in (#17288)
Claire
2022-01-23
Remove support for OAUTH_REDIRECT_AT_SIGN_IN (#17287)
Claire
2022-01-16
Remove IP tracking columns from users table (#16409)
Eugen Rochko
2021-11-06
Fix reviving revoked sessions and invalidating login (#16943)
Claire
2021-09-30
Fix webauthn secure key authentication (#16792)
Claire
2021-08-26
Explicitly set userVerification to discoraged (#16545)
Truong Nguyen
2021-08-25
Fix authentication failures after going halfway through a sign-in attempt (#1...
Claire
2021-08-25
Fix undefined variable for Auth::OmniauthCallbacksController (#16654)
Daniel
2021-06-21
Add authentication history (#16408)
Eugen Rochko
2021-05-03
Change confirmations controller to redirect to / for approved users (#16151)
Claire
2020-12-10
Add honeypot fields and minimum fill-out time for sign-up form (#15276)
ThibG
2020-11-12
Fix 2FA/sign-in token sessions being valid after password change (#14802)
Eugen Rochko
2020-10-12
Add IP-based rules (#14963)
Eugen Rochko
2020-08-24
Add WebAuthn as an alternative 2FA method (#14466)
santiagorodriguez96
2020-07-14
Fix rubocop warning (#14288)
abcang
2020-07-07
Fix other sessions not being logged out on password change (#14252)
Eugen Rochko
2020-06-09
Add e-mail-based sign in challenge for users with disabled 2FA (#14013)
Eugen Rochko
2020-05-10
Remove confusing “You are already signed in.” flash message (#13547)
ThibG
2020-02-16
Fix sign-ups without checked user agreement being accepted through the web fo...
ThibG
2020-01-24
Fix password change/reset not immediately invalidating other sessions (#12928)
Eugen Rochko
2019-12-30
Fix settings pages being cacheable by the browser (#12714)
Eugen Rochko
2019-09-24
Fix authentication before 2FA challenge (#11943)
Eugen Rochko
2019-09-18
Add password challenge to 2FA settings, e-mail notifications (#11878)
Eugen Rochko
2019-09-15
Fix 2FA challenge and password challenge for non-database users (#11831)
Eugen Rochko
2019-09-05
Fix wrong variable regression from #11753 (#11763)
Eugen Rochko
2019-09-04
Change account deletion page to have better explanations (#11753)
Eugen Rochko
2019-07-22
Change unconfirmed user login behaviour (#11375)
Eugen Rochko
2019-05-02
Check that an invite link is valid before bypassing approval mode (#10657)
ThibG
2019-04-09
Add "why do you want to join" field to invite requests (#10524)
Eugen Rochko
2019-03-14
Admission-based registrations mode (#10250)
Eugen Rochko
2019-02-12
Save IP address used for sign-up, not only sign-in (#10026)
ThibG
2018-12-24
Add REST API for creating an account (#9572)
Eugen Rochko
2018-10-30
Revert "feat(auth/session_controller): Send Clear-Site-Data when logging out ...
Eugen Rochko
2018-10-26
Fix styling in /auth/edit (#9117)
ThibG
2018-09-14
Misc. typos (#8694)
luzpaz
2018-09-09
Add force_login option to OAuth authorize page (#8655)
Eugen Rochko
[next]