4 commits

Author	SHA1	Message	Date
epriestley	36006bcb8f	Prevent locked credentials from being made accessible via conduit ... Summary: Via HackerOne. Currently, you can use "Lock Permanently" to lock a credential permanently, but you can still enable Conduit API access to it. This directly contradicts both intent of the setting and its description as presented to the user. Instead: - When a credential is locked, revoke Conduit API access. - Prevent API access from being enabled for locked credentials. - Prevent API access to locked credentials, period. Test Plan: - Created a credential. - Enabled API access. - Locked credential. - Saw API access become disabled. - Tried to enable API access; was rebuffed. - Queried credential via API, wasn't granted access. Reviewers: chad Reviewed By: chad Differential Revision: https://secure.phabricator.com/D15944	2016-05-18 14:54:44 -07:00
Chad Little	6fb43305be	Convert Passhrase to handleRequest ... Summary: Converts Passphrase Test Plan: New Cred, Edit Cred, Lock, view, destroy Reviewers: epriestley Reviewed By: epriestley Subscribers: epriestley, Korvin Maniphest Tasks: T8628 Differential Revision: https://secure.phabricator.com/D13726	2015-07-27 09:06:01 -07:00
Joshua Spence	36e2d02d6e	phtize all the things ... Summary: `pht`ize a whole bunch of strings in rP. Test Plan: Intense eyeballing. Reviewers: #blessed_reviewers, epriestley Reviewed By: #blessed_reviewers, epriestley Subscribers: hach-que, Korvin, epriestley Differential Revision: https://secure.phabricator.com/D12797	2015-05-22 21:16:39 +10:00
James Rhodes	26f283fe21	Implement passphrase.query for querying credentials ... Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262	2014-08-16 22:41:03 +10:00