revi-archive/phorge-phorge
1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2025-02-25 13:09:08 +01:00
Code Issues Releases Wiki Activity
phorge-phorge/src/applications/auth/management
History
Austin McKinley 0f9776fb58 Add a workflow and a new config option for locking authentication providers 
Summary:
Ref T7667. Adds new flows `bin/auth lock` and `bin/auth unlock` to prevent compromised administrator accounts from doing additional damage by altering the authentication provider configuration.

Note that this currently doesn't actually do anything because we aren't checking this config key in any of the edit controllers yet.

Test Plan: Ran `lock` and `unlock`, checked for correct DB state, observed expected setup warning.

Reviewers: epriestley

Reviewed By: epriestley

Subscribers: Korvin

Maniphest Tasks: T7667

Differential Revision: https://secure.phabricator.com/D20394
2019-04-10 16:14:48 -07:00
..
PhabricatorAuthManagementCachePKCS8Workflow.php phtize all the things 2015-05-22 21:16:39 +10:00
PhabricatorAuthManagementLDAPWorkflow.php phtize all the things 2015-05-22 21:16:39 +10:00
PhabricatorAuthManagementListFactorsWorkflow.php Update bin/auth MFA commands for the new "MFA Provider" indirection layer 2019-01-23 13:38:44 -08:00
PhabricatorAuthManagementListMFAProvidersWorkflow.php Update bin/auth MFA commands for the new "MFA Provider" indirection layer 2019-01-23 13:38:44 -08:00
PhabricatorAuthManagementLockWorkflow.php Add a workflow and a new config option for locking authentication providers 2019-04-10 16:14:48 -07:00
PhabricatorAuthManagementRecoverWorkflow.php Allow "bin/auth recover" to generate a link which forces a full login session 2018-12-28 00:15:36 -08:00
PhabricatorAuthManagementRefreshWorkflow.php Various translation improvements 2015-11-03 07:02:46 +11:00
PhabricatorAuthManagementRevokeWorkflow.php Add "bin/auth revoke --list" to explain what can be revoked 2018-01-23 14:01:39 -08:00
PhabricatorAuthManagementStripWorkflow.php Update bin/auth MFA commands for the new "MFA Provider" indirection layer 2019-01-23 13:38:44 -08:00
PhabricatorAuthManagementTrustOAuthClientWorkflow.php phtize all the things 2015-05-22 21:16:39 +10:00
PhabricatorAuthManagementUnlimitWorkflow.php Add bin/auth unlimit and clean up a TODO 2015-09-14 07:03:39 -07:00
PhabricatorAuthManagementUnlockWorkflow.php Add a workflow and a new config option for locking authentication providers 2019-04-10 16:14:48 -07:00
PhabricatorAuthManagementUntrustOAuthClientWorkflow.php phtize all the things 2015-05-22 21:16:39 +10:00
PhabricatorAuthManagementVerifyWorkflow.php Add a "did verify email" event to Phabricator 2015-02-11 14:39:06 -08:00
PhabricatorAuthManagementWorkflow.php Apply some autofix linter rules 2014-09-10 06:55:05 +10:00