github-personal/firezone
1
0
Fork 0
mirror of https://github.com/outbackdingo/firezone.git synced 2026-01-28 18:18:55 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
42e6e9593abf501682001ffdd3fe8870bcd587fa
firezone/elixir/apps/web/test
History
Andrew Dryga 37f078c379 fix(portal): Verify email in constant time and sign it's value to prevent text injection (#5418) 
You still can generate a link that will inject a text as long as it has
`@` in it - there is no good ways to validate emails other than just
check for that. The only *reliable* ways to fix that is to either remove
that text (making users more confused) or only show it if identity was
found (leaking the fact of it's existence).
2024-06-18 13:42:52 -06:00
..
support
refactor(portal): Refactor client login to use HTML meta refresh and cookie (#4617)
2024-04-16 19:47:16 +00:00
web
fix(portal): Verify email in constant time and sign it's value to prevent text injection (#5418)
2024-06-18 13:42:52 -06:00
test_helper.exs
fix(portal): Fix auth redirect and test client auth using acceptance tests (#3269)
2024-01-16 19:00:46 -06:00