Only allow token authentication with 2FA enabled (#2184) - gitea.git - Git with a cup of tea! Painless self-hosted all-in-one software development service, including Git hosting, code review, team collaboration, package registry and CI/CD: https://github.com/go-gitea/gitea

diff options

author	Moritz Heiber <github@heiber.im>	2017-07-26 09:33:16 +0200
committer	Lunny Xiao <xiaolunwen@gmail.com>	2017-07-26 15:33:16 +0800
commit	7e12aac61c8ffcfb122d299216a88590e2a63e9c (patch)
tree	0340dde62e1be57163d2c65901b09bd496abf5d4 /routers/admin/orgs.go
parent	1d032f5220e323e14867cfec0b7b06945a47ee06 (diff)
download	gitea-7e12aac61c8ffcfb122d299216a88590e2a63e9c.tar.gz gitea-7e12aac61c8ffcfb122d299216a88590e2a63e9c.zip

Only allow token authentication with 2FA enabled (#2184)

* Don't allow for plain username/password authentication when 2FA is enabled * Removed debugging statement * Don't assume a token belongs to a given user, handle two-factor errors properly * Simplified user/token matching, refactored error handling for two-factor authentication * Change authentication response to avoid bruteforcing * Add TODO item as a comment for changing the response for security purposes

Diffstat (limited to 'routers/admin/orgs.go')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: