upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-02-10 22:34:26 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 61
nextcloud/lib/private/Authentication
History
Arthur Schiwon 86a496d589
fix(Session): avoid password confirmation on SSO 
SSO backends like SAML and OIDC tried a trick to suppress password
confirmations as they are not possible by design. At least for SAML it was
not reliable when existing user backends where used as user repositories.

Now we are setting a special scope with the token, and also make sure that
the scope is taken over when tokens are regenerated.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
2024-06-12 11:14:25 +02:00
..
Events Use OCP version of IToken in AppPasswordCreatedEvent 2024-01-11 18:01:00 +00:00
Exceptions Improve docblock annotations for tokens and their exceptions 2023-10-23 15:20:04 +02:00
Listeners chore: apply changes from Nextcloud coding standards 1.1.1 2023-11-23 10:36:13 +01:00
Login chore: apply changes from Nextcloud coding standards 1.1.1 2023-11-23 10:36:13 +01:00
LoginCredentials Always catch OCP versions of authentication exceptions 2024-01-11 18:00:59 +00:00
Notifications composer run cs:fix 2023-01-20 11:45:08 +01:00
Token fix(Session): avoid password confirmation on SSO 2024-06-12 11:14:25 +02:00
TwoFactorAuth Always catch OCP versions of authentication exceptions 2024-01-11 18:00:59 +00:00
WebAuthn chore: apply changes from Nextcloud coding standards 1.1.1 2023-11-23 10:36:13 +01:00