| Commit message (Collapse) | Author | Age | Lines | |
|---|---|---|---|---|
| * | Switch to internal QR code generator. | Matthew Somerville | 2019-11-23 | -2/+2 |
| | | ||||
| * | Record time of password change. | Matthew Somerville | 2019-11-04 | -1/+2 |
| | | ||||
| * | Allow enforcement of 2FA for staff users. | Matthew Somerville | 2019-10-30 | -0/+1 |
| | | ||||
| * | Require code to be entered when activating 2FA. | Matthew Somerville | 2019-10-28 | -10/+24 |
| | | ||||
| * | Allow non-superusers to store 2FA secrets. | Matthew Somerville | 2019-10-28 | -1/+1 |
| | | ||||
| * | Allow OIDC auth to provide its own ‘change password’ URI | Dave Arter | 2019-08-16 | -0/+22 |
| | | ||||
| * | Preserve partial report if resetting password during OIDC login | Dave Arter | 2019-08-16 | -1/+10 |
| | | ||||
| * | Add test for OIDC logout redirection | Dave Arter | 2019-08-16 | -8/+9 |
| | | ||||
| * | Improve checking of OIDC ID tokens, and handle OIDC forgotten password flow ↵ | Dave Arter | 2019-08-16 | -3/+25 |
| | | | | | correctly | |||
| * | Handle forgotten password OIDC flow | Dave Arter | 2019-08-16 | -3/+21 |
| | | ||||
| * | Add support for OIDC logout | Dave Arter | 2019-08-16 | -0/+9 |
| | | ||||
| * | Allow cobrand to store extra fields on user when logging in via oauth | Dave Arter | 2019-08-16 | -2/+19 |
| | | ||||
| * | Add OpenID Connect login functionality | Dave Arter | 2019-08-16 | -7/+122 |
| | | ||||
| * | Set user’s name when creating user via OAuth | Dave Arter | 2019-08-16 | -0/+1 |
| | | ||||
| * | Merge branch '2fa-superuser' | Matthew Somerville | 2018-02-07 | -3/+23 |
| |\ | ||||
| | * | Add two-factor authentication for superusers. | Matthew Somerville | 2018-02-07 | -3/+23 |
| | | | ||||
| * | | Merge branch 'password-tests' | Matthew Somerville | 2018-02-06 | -2/+7 |
| |\ \ | ||||
| | * | | Add length/common password checking. | Matthew Somerville | 2018-02-06 | -2/+7 |
| | |/ | ||||
| * / | Ask for current pw/send email on password change. | Matthew Somerville | 2018-02-01 | -6/+28 |
| |/ | | | | | If they have a current password, ask for it; if they don't, send a confirmation email. | |||
| * | Staff user page for generating an access token. | Struan Donald | 2017-11-29 | -0/+22 |
| | | | | | | Adds a link from /my to a page for generating an access token which is then stored in the user's extra field. | |||
| * | Factor the three SMS code checking fns together. | Matthew Somerville | 2017-10-12 | -3/+5 |
| | | ||||
| * | Spot errors coming back when sending text. | Matthew Somerville | 2017-10-12 | -0/+6 |
| | | ||||
| * | Accept +1 geographic numbers as possibly mobile. | Matthew Somerville | 2017-10-05 | -6/+6 |
| | | | | | | We have no way of knowing whether a +1 geographic number is fixed line or mobile, so accept them all as potentially mobile. | |||
| * | Allow verify/change/add email/phone in profile. | Matthew Somerville | 2017-09-30 | -3/+65 |
| | | | | | | | This expands the 'change email' functionality to work with phone number also, allow addition of missing details, and verifying of unverified details. | |||
| * | Add ability to log in on /auth via text. | Matthew Somerville | 2017-09-30 | -1/+97 |
| | | | | | A confirmation code is sent via Twilio to be entered on the site. | |||
| * | Add 'verified' database columns for email/phone. | Matthew Somerville | 2017-09-30 | -1/+1 |
| | | | | | | These are so we can state whether a user's email address or phone number have been verified by confirmation email/text. | |||
| * | Move some auth functions to their own controllers. | Matthew Somerville | 2017-09-30 | -0/+296 |
| Move the social auth functions to Auth::Social, and the change email/password functions to Auth::Profile. There are no actual code changes. | ||||
 |
index : fixmystreet | |
| This is mySociety's popular map-based reporting platform: easy to install in new countries and regions http://fixmystreet.org/ | FiksGataMi |
| aboutsummaryrefslogtreecommitdiffstats |