upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-03-19 00:53:51 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 13
nextcloud/lib/private/Authentication/Token
History
Arthur Schiwon 02313013ad
fix(Session): avoid password confirmation on SSO 
SSO backends like SAML and OIDC tried a trick to suppress password
confirmations as they are not possible by design. At least for SAML it was
not reliable when existing user backends where used as user repositories.

Now we are setting a special scope with the token, and also make sure that
the scope is taken over when tokens are regenerated.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2024-06-12 19:28:57 +02:00
..
INamedToken.php Update php licenses 2021-06-04 22:02:41 +02:00
IProvider.php composer run cs:fix 2023-01-20 11:45:08 +01:00
IToken.php Update php licenses 2021-06-04 22:02:41 +02:00
IWipeableToken.php composer run cs:fix 2023-01-20 11:45:08 +01:00
Manager.php public interface to invalidate tokens of user 2023-03-14 17:13:29 +01:00
PublicKeyToken.php PublickKeyTokenProvider: Fix password update routine with password hash 2023-01-04 08:30:53 +01:00
PublicKeyTokenMapper.php feat(perf): add cache for authtoken lookup 2024-05-07 14:54:06 +02:00
PublicKeyTokenProvider.php fix(Session): avoid password confirmation on SSO 2024-06-12 19:28:57 +02:00
RemoteWipe.php composer run cs:fix 2023-01-20 11:45:08 +01:00
TokenCleanupJob.php Add back TokenCleanupJob to invalidate old temporary tokens 2022-08-25 11:31:21 +02:00