mirror of
https://github.com/discourse/discourse.git
synced 2024-11-25 23:13:40 +08:00
fa8cd629f1
This commit adds token_hash and scopes columns to email_tokens table. token_hash is a replacement for the token column to avoid storing email tokens in plaintext as it can pose a security risk. The new scope column ensures that email tokens cannot be used to perform a different action than the one intended. To sum up, this commit: * Adds token_hash and scope to email_tokens * Reuses code that schedules critical_user_email * Refactors EmailToken.confirm and EmailToken.atomic_confirm methods * Periodically cleans old, unconfirmed or expired email tokens |
||
|---|---|---|
| .. | ||
| schemas | ||
| shared | ||
| backups_spec.rb | ||
| badges_spec.rb | ||
| categories_spec.rb | ||
| groups_spec.rb | ||
| invites_spec.rb | ||
| notifications_spec.rb | ||
| posts_spec.rb | ||
| private_messages_spec.rb | ||
| search_spec.rb | ||
| site_spec.rb | ||
| tags_spec.rb | ||
| topics_spec.rb | ||
| uploads_spec.rb | ||
| user_badges_spec.rb | ||
| users_spec.rb | ||