1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2024-12-19 20:10:55 +01:00
phorge-phorge/src/applications/auth/controller
epriestley aea624118b Allow users to terminate login sessions
Summary:
This is partly a good feature, and partly should reduce false positives on HackerOne reporting things vaguely related to this.

Allow a user to terminate login sessions from the settings panel.

Test Plan:
  - Terminated a session.
  - Terminated all sessions.
  - Tried to terminate all sessions again.
  - Logged in with two browsers, terminated the other browser's session, reloaded, got kicked out.

Reviewers: btrahan

Reviewed By: btrahan

Subscribers: epriestley

Differential Revision: https://secure.phabricator.com/D8556
2014-03-17 15:02:01 -07:00
..
config Make password hashing modular 2014-02-18 14:09:36 -08:00
PhabricatorAuthConfirmLinkController.php Provide convenience method addTextCrumb() to PhabricatorCrumbsView 2013-12-18 17:47:34 -08:00
PhabricatorAuthController.php Fix an incorrectly spelled call on the registration error pathway 2014-02-24 11:45:28 -08:00
PhabricatorAuthLinkController.php Tune cookie behaviors for 'phcid', 'phreg', etc 2014-03-14 14:33:31 -07:00
PhabricatorAuthLoginController.php Tune cookie behaviors for 'phcid', 'phreg', etc 2014-03-14 14:33:31 -07:00
PhabricatorAuthNeedsApprovalController.php Slightly improve behavior for unverified + unapproved users 2013-11-21 12:58:58 -08:00
PhabricatorAuthOldOAuthRedirectController.php Whitelist controllers which can receive a 'code' parameter 2014-03-12 11:30:04 -07:00
PhabricatorAuthRegisterController.php Fix two registration errors for unusual provider emails 2014-03-13 19:03:12 -07:00
PhabricatorAuthStartController.php Tune cookie behaviors for 'phcid', 'phreg', etc 2014-03-14 14:33:31 -07:00
PhabricatorAuthTerminateSessionController.php Allow users to terminate login sessions 2014-03-17 15:02:01 -07:00
PhabricatorAuthUnlinkController.php Move all account link / unlink to new registration flow 2013-06-17 06:12:45 -07:00
PhabricatorAuthValidateController.php After writing "next_uri", don't write it again for a while 2014-01-23 14:16:08 -08:00
PhabricatorDisabledUserController.php Restore merge of phutil_tag. 2013-02-13 14:51:18 -08:00
PhabricatorEmailLoginController.php Provide convenience method addTextCrumb() to PhabricatorCrumbsView 2013-12-18 17:47:34 -08:00
PhabricatorEmailTokenController.php Fix some security issues with email password resets 2014-01-27 16:53:04 -08:00
PhabricatorEmailVerificationController.php Require CSRF submission to verify email addresses 2014-02-26 11:17:46 -08:00
PhabricatorLogoutController.php Consolidate use of magical cookie name strings 2014-01-23 14:01:35 -08:00
PhabricatorMustVerifyEmailController.php Recover more flexibly from an already-verified email 2013-11-21 14:41:32 -08:00
PhabricatorRefreshCSRFController.php Delete license headers from files 2012-11-05 11:16:51 -08:00