Henrik Hodne
|
277f0c2f72
|
Whitelist travis-lite for authentication
|
2013-06-04 21:57:09 +02:00 |
|
Konstantin Haase
|
6b2a1a0da8
|
do not use client credentials for /auth/github
|
2013-04-24 16:47:52 +02:00 |
|
Konstantin Haase
|
cc2a1cd50e
|
do not require user scope for /auth/github
|
2013-01-11 17:48:30 +01:00 |
|
Konstantin Haase
|
3d6defe3b1
|
do not store token from /auth/github
|
2013-01-11 16:49:08 +01:00 |
|
Konstantin Haase
|
ada6ee0f2c
|
fix scope check
|
2013-01-11 16:20:53 +01:00 |
|
Konstantin Haase
|
e7be49dcb1
|
fix the payload
|
2012-12-17 20:22:51 +01:00 |
|
Konstantin Haase
|
f878eee987
|
fix logging
|
2012-12-17 20:06:45 +01:00 |
|
Konstantin Haase
|
b3b5476076
|
first think, then commit
|
2012-12-17 19:26:58 +01:00 |
|
Konstantin Haase
|
9a1988d586
|
fix template
|
2012-12-17 19:22:33 +01:00 |
|
Konstantin Haase
|
f5fdcc41c6
|
fix token logic
|
2012-12-17 15:35:35 +01:00 |
|
Konstantin Haase
|
8c8f031259
|
have travis token added to user payload on the server
|
2012-12-17 15:13:38 +01:00 |
|
Sven Fuchs
|
c44445d8e2
|
use the api serializer to serialize a user record
|
2012-12-17 01:40:16 +01:00 |
|
Konstantin Haase
|
b005047d95
|
rename token parameter to github_token for /auth/github
|
2012-12-12 18:30:55 +01:00 |
|
Konstantin Haase
|
44d6c02591
|
actually check if github sent a token
|
2012-12-10 15:49:37 +01:00 |
|
Konstantin Haase
|
3d8c9ed914
|
use localStorage after handshake
|
2012-12-10 14:03:31 +01:00 |
|
Piotr Sarnacki
|
88363423f4
|
Fix whitelist auth check for localhost
|
2012-12-09 23:46:18 +01:00 |
|
Konstantin Haase
|
83e42adc65
|
that did not work
|
2012-12-06 16:55:58 +01:00 |
|
Konstantin Haase
|
2250d1ba5c
|
only send user payload
|
2012-12-06 16:51:33 +01:00 |
|
Konstantin Haase
|
981a32f877
|
fix setTimeout
|
2012-12-06 16:24:37 +01:00 |
|
Konstantin Haase
|
24ea1ca7c0
|
cheap escape
|
2012-12-06 16:05:36 +01:00 |
|
Konstantin Haase
|
7b4fe5dab3
|
no inspect
|
2012-12-06 15:52:49 +01:00 |
|
Konstantin Haase
|
af1aeb8147
|
set action and method
|
2012-12-06 15:40:29 +01:00 |
|
Konstantin Haase
|
afad81f927
|
Addressable::URI.parse might return nil
|
2012-12-06 15:34:13 +01:00 |
|
Konstantin Haase
|
ee1f9d899d
|
set content type
|
2012-12-06 15:24:46 +01:00 |
|
Konstantin Haase
|
cd9d84783d
|
fix regex
|
2012-12-06 15:20:23 +01:00 |
|
Konstantin Haase
|
3b84b83699
|
post data for targets we know
|
2012-12-06 15:08:27 +01:00 |
|
Konstantin Haase
|
497eebab94
|
simplify popup check
|
2012-12-05 15:10:28 +01:00 |
|
Konstantin Haase
|
811aa47098
|
rewrite post message login
|
2012-12-05 14:09:56 +01:00 |
|
Konstantin Haase
|
d3ed96f165
|
trigger redirect
|
2012-12-04 14:39:50 +01:00 |
|
Henrik Hodne
|
6f534d388e
|
Note endpoints that are not yet implemented
|
2012-11-28 18:10:55 -06:00 |
|
Konstantin Haase
|
31da89380a
|
implement auth timeout
|
2012-11-18 21:10:49 +01:00 |
|
Konstantin Haase
|
448501be3a
|
add logging
|
2012-11-18 19:53:05 +01:00 |
|
Piotr Sarnacki
|
a787f32e52
|
Use document.createElement('iframe') instad of document.write
|
2012-11-18 14:47:56 +01:00 |
|
Piotr Sarnacki
|
07d965307f
|
Remove actions for cookie check, we don't use them anymore
|
2012-11-18 14:47:13 +01:00 |
|
Piotr Sarnacki
|
3cb9dd89cd
|
Use third-party-cookies.herokuapp.com for cookie check
|
2012-11-18 14:39:34 +01:00 |
|
Piotr Sarnacki
|
33dced826b
|
Popup should be open only if thirdPartyCookies are disabled
|
2012-11-18 13:32:36 +01:00 |
|
Konstantin Haase
|
bbbe0e0c67
|
fix typo
|
2012-11-18 13:18:20 +01:00 |
|
Konstantin Haase
|
a7c0b84c35
|
fix urls
|
2012-11-18 13:08:24 +01:00 |
|
Konstantin Haase
|
b5760abd2b
|
fix template
|
2012-11-18 12:59:33 +01:00 |
|
Konstantin Haase
|
46c55bc400
|
sinatrafy
|
2012-11-18 12:06:57 +01:00 |
|
Piotr Sarnacki
|
707b2c68e8
|
Check if third party cookies are enabled to choose login method
|
2012-11-17 21:12:02 +01:00 |
|
Konstantin Haase
|
2b3579e6dd
|
first stab at a popup flow
|
2012-11-17 17:55:21 +01:00 |
|
Konstantin Haase
|
eabc178dec
|
allow post message login from a pop-up
|
2012-11-17 14:59:21 +01:00 |
|
Konstantin Haase
|
946e734d98
|
need to check scopes before storing token
|
2012-11-15 16:59:17 +01:00 |
|
Piotr Sarnacki
|
f0f471f1c6
|
Fix updating github oauth token after signing in
|
2012-11-12 17:15:28 +01:00 |
|
Piotr Sarnacki
|
662697953e
|
Pass also travis token in /auth/post_message
|
2012-11-11 20:39:59 +01:00 |
|
Konstantin Haase
|
6c911407f0
|
make allowed_targets an option
|
2012-10-29 18:51:27 +01:00 |
|
Sven Fuchs
|
c2e06293a0
|
fix target_ok? regexp
|
2012-10-21 18:21:15 +02:00 |
|
Konstantin Haase
|
720cbef577
|
allow underscore and dash in subdomains
|
2012-10-18 23:49:15 +02:00 |
|
Sven Fuchs
|
6e343099b4
|
set the scope for /post_message to :public (@rkh: confim?)
|
2012-10-13 03:31:08 +02:00 |
|