discourse

mirror of https://github.com/discourse/discourse.git synced 2025-01-19 14:22:52 +08:00

History

Jarek Radosz 704778f448 FIX: Don't invite new users via group with SSO on or local logins off (#11950 ) Issue originally reported in https://meta.discourse.org/t/bypass-sso-by-adding-unkown-email-to-group/177339 Inviting people via email address to a group when SSO is enabled (or local logins are disabled) led to a situation where user records were being created bypassing single sign-on. We already prevent that in most places. This adds required checks to `GroupsController`.		2021-02-03 18:13:00 +01:00
..
assets	UX: Uniformize styles for focus states (#11933 )	2021-02-03 11:45:54 -05:00
controllers	FIX: Don't invite new users via group with SSO on or local logins off (#11950 )	2021-02-03 18:13:00 +01:00
helpers	FIX: Cleanup authentication_data cookie after login (#11834 )	2021-01-25 13:47:44 +00:00
jobs	FIX: In FastImage 2.2.2 an error is raised with a `nil` path (#11954 )	2021-02-03 11:45:12 -05:00
mailers	FEATURE: reason to reject user signup (#11700 )	2021-01-15 09:43:26 +11:00
models	DEV: Remove `update_mail_receiver` and `deprecated_api_usage` (#11947 )	2021-02-03 17:41:47 +01:00
serializers	FIX: Existing shared drafts should be accessible (#11915 )	2021-02-01 16:16:34 +02:00
services	DEV: New option to always destroy posts. (#11898 )	2021-02-01 16:57:31 -05:00
views	Fix i18n issues reported on Crowdin (#11747 )	2021-02-02 10:50:04 +01:00