023ef367fd
Update translations ( #103 )
2024-05-31 12:28:50 +02:00
8277a3666d
Add support for PUT verb for auth token URL ( #95 )
2024-01-24 18:10:39 -03:00
1448f05319
Update translations ( #80 )
2023-01-24 16:31:11 +01:00
1281bf0e49
Update translations ( #78 )
2023-01-10 20:55:34 +01:00
4a5259d81e
Update translations ( #74 )
2022-11-29 15:38:03 +01:00
c95e92554c
Update translations ( #70 )
2022-06-21 15:28:02 +02:00
38fa7971b3
Update translations ( #66 )
2022-04-12 19:09:00 +02:00
38f527fafa
DEV: General cleanup ( #65 )
2022-04-06 12:19:44 +02:00
4073efac82
Update translations ( #62 )
2022-02-15 15:10:18 +01:00
2e1e620c79
Update translations ( #60 )
2022-01-18 14:42:25 +01:00
c1e380eb31
Update translations ( #59 )
2022-01-04 17:39:48 +01:00
ecef39d57e
Update translations ( #58 )
2021-12-28 14:14:10 +01:00
4aa665fdd6
UX: Update setting description for oauth2_overrides_email ( #57 )
2021-12-23 09:23:07 +00:00
83d88d3d1b
Update translations ( #54 )
2021-12-14 14:54:04 +01:00
c3404ed877
Update translations ( #45 )
2021-06-01 15:11:22 +02:00
50aca4050f
Update translations ( #44 )
2021-05-25 15:26:44 +02:00
60eeb0d338
Hide the `oauth2_disable_csrf` setting ( #41 )
...
It can be useful for homegrown CSRF setups or while debugging but it is
not secure and should only be used if you really know what you're doing.
2021-04-21 13:30:28 -04:00
76eeb5a35d
Update translations ( #39 )
2021-04-20 15:30:18 +02:00
cef99620a1
Allow to disable CSRF check during the oauth login. ( #38 )
...
* Ignore CSRF check.
* Ignore CSRF check as a plugin setting.
Co-authored-by: Kalach, Dmitry <d.kalach@itransition.com>
2021-04-19 12:39:45 -04:00
aaf3044043
Update translations ( #35 )
2021-03-16 15:45:23 +01:00
a9ad67c4c6
FEATURE: Allow using a different authorize_url for signup ( #34 )
...
If specified, the oauth2_authorize_signup_url will be used when the user starts the auth flow via the 'sign up' buttons in the UI. If not specified, the regular authorize_url continues to be used.
2021-03-10 12:29:58 +00:00
0be01f0afd
Update translations ( #31 )
2021-02-09 14:47:52 +01:00
df0b2c5460
Update translations ( #30 )
2021-01-26 14:48:54 +01:00
66b0d391ef
Update translations ( #27 )
2020-12-22 14:46:10 +01:00
820a6f856f
Update translations ( #26 )
2020-12-15 15:23:29 +01:00
29e828fccf
Update translations ( #25 )
2020-11-24 17:22:12 +01:00
db84540470
Update translations
2020-10-06 15:19:21 +02:00
13ed44486a
Update translations
2020-09-22 13:05:19 +00:00
1f6eced849
Update translations
2020-09-16 10:19:28 +00:00
d2cb7e9470
Update translations
2020-08-18 13:03:21 +00:00
399685ee83
Update translations
2020-08-11 13:05:09 +00:00
3c3aa6e0b0
Update translations
2020-08-05 13:29:14 +00:00
c6245de6fb
Update translations
2020-06-24 11:41:41 -04:00
6dc9131fb9
Update translations
2020-05-27 16:54:50 -04:00
e045df91d7
Update translations
2020-05-04 10:50:16 -04:00
be136eacb4
FEATURE: Allow disabling request_body authentication for token endpoint
...
By default we include both authentication data in both the Authorization header, and in the request body. This provides maximum compatibility, although is technically a breach of the OAuth2 specification. This commit introduces a new site setting `oauth2_send_auth_body`, which allows the behavior to be controlled.
2020-04-30 17:28:22 +01:00
1b9937b27d
DEV: Remove deprecated use of full_screen_login_setting
2020-04-20 14:20:02 +01:00
72d655bc44
UX: Update copy for site settings
2020-04-09 11:40:45 +01:00
879dca616d
Update translations
2020-02-25 10:33:50 -05:00
0bf0cd46d3
Update translations
2020-01-20 11:22:14 -05:00
8a36ac21c9
Update translations
2019-12-19 12:51:15 -05:00
0206827e30
Update translations
2019-11-06 10:47:00 -05:00
8d9945040c
UX: Update copy for email_verified_path setting
2019-11-06 13:08:27 +00:00
2079d46a4a
Update translations
2019-10-10 11:26:23 -04:00
5ae9f35e81
FEATURE: Migrate to ManagedAuthenticator ( #21 )
...
This brings the plugin in-line with recent core improvements. Advantages include
- Account-linking logic and storage is shared between all authentication providers
- Optionally, users can be allowed to disconnect/reconnect their accounts
- The 'last used' date of an association is recorded
- Association metadata is recorded in the database for use in data explorer and other plugins
Data migration will be performed automatically, and all existing functionality is maintained.
2019-07-27 16:34:17 +01:00
4c833e83c5
Update translations
2019-07-15 14:02:20 -04:00
eb31cdf44f
Handle fetch user details failure ( #20 )
...
* handle failure in get_user_details request
* add spec
* improve spec
* return nil on failure
2019-07-11 10:31:51 -04:00
c543110334
Typo fixed ( #19 )
...
verfied -> verified.
2019-07-07 10:05:42 -04:00
a634ff896d
Use token callback user details ( #18 )
...
* Add way to use user details returned in token response
* Add spec
* Apply suggestions from code review
Co-Authored-By: Robin Ward <robin.ward@gmail.com>
2019-07-05 10:27:07 -04:00
ef5b3ee1ff
FEATURE: Allow provider to set email verification state ( #17 )
2019-06-26 11:03:52 +01:00
Discourse Translator Bot
Leonardo Mosquera
Jarek Radosz
David Taylor
Robin Ward
babayotakun
Neil Lalonde
Angus McLeod
Yaron Shahrabani