phorge-phorge

mirror of https://we.phorge.it/source/phorge.git synced 2024-11-22 14:52:41 +01:00

No description

Find a file

epriestley aa3b582c7b Remove "set password" from `bin/accountadmin` and let `bin/auth recover` recover anyone Summary: Ref T13043. This cleans some things up to prepare for moving account passwords to shared infrastructure. Currently, the (very old, fairly unusual) `bin/accountadmin` tool can set account passwords. This is a bit weird, generally not great, and makes upgrading to shared infrastructure more difficult. Just get rid of this to simplify things. Many installs don't have passwords and this is pointless and unhelpful in those cases. Instead, let `bin/auth recover` recover any account, not just administrator accounts. This was a guardrail against administrative abuse, but it has always seemed especially flimsy (since anyone who can run the tool can easily comment out the checks) and I use this tool in cluster support with some frequency, occasionally just commenting out the checks. This is generally a better solution than actually setting a password on accounts anyway. Just get rid of the check and give users enough rope to shoot themselves in the foot with if they truly desire. Test Plan: - Ran `bin/accountadmin`, didn't get prompted to swap passwords anymore. - Ran `bin/auth recover` to recover a non-admin account. Reviewers: amckinley Reviewed By: amckinley Maniphest Tasks: T13043 Differential Revision: https://secure.phabricator.com/D18901		2018-01-23 10:58:11 -08:00
bin	Allow bulk edits to be made silently if you have CLI access	2018-01-19 13:24:54 -08:00
conf	Support "ssl.chain" in Aphlict configuration	2016-04-14 10:41:21 -07:00
externals	Add profile images to Repositories	2017-06-12 07:51:39 -07:00
resources	Prepare the new AuthPassword infrastructure for storing account passwords	2018-01-23 10:57:40 -08:00
scripts	Remove "set password" from `bin/accountadmin` and let `bin/auth recover` recover anyone	2018-01-23 10:58:11 -08:00
src	Remove "set password" from `bin/accountadmin` and let `bin/auth recover` recover anyone	2018-01-23 10:58:11 -08:00
support	Tweak rate limiting point counts for omnipotent users	2017-10-16 06:43:54 -07:00
webroot	Respect token limits for "Assign to" and custom datasource fields in Herald	2018-01-22 11:54:12 -08:00
.arcconfig	Set "history.immutable" to "false" explicitly in .arcconfig	2016-08-03 08:12:49 -07:00
.arclint	Begin adding test coverage to GitHub Events API parsers	2016-03-09 09:30:07 -08:00
.arcunit	Use the configuration driven unit test engine	2015-08-11 07:57:11 +10:00
.editorconfig	Fix text lint issues	2015-02-12 07:00:13 +11:00
.gitignore	Make i18n string extraction faster and more flexible	2016-07-04 10:23:30 -07:00
LICENSE	Fix text lint issues	2015-02-12 07:00:13 +11:00
NOTICE	Update Phabricator NOTICE file to reflect modern legal circumstances	2014-06-25 13:42:13 -07:00
README.md	Remove push to IRC from "readme.md" too	2015-10-24 18:39:16 -07:00

README.md

Phabricator is a collection of web applications which help software companies build better software.

Phabricator includes applications for:

reviewing and auditing source code;
hosting and browsing repositories;
tracking bugs;
managing projects;
conversing with team members;
assembling a party to venture forth;
writing stuff down and reading it later;
hiding stuff from coworkers; and
also some other things.

You can learn more about the project (and find links to documentation and resources) at Phabricator.org

Phabricator is developed and maintained by Phacility.

SUPPORT RESOURCES

For resources on filing bugs, requesting features, reporting security issues, and getting other kinds of support, see Support Resources.

NO PULL REQUESTS!

We do not accept pull requests through GitHub. If you would like to contribute code, please read our Contributor's Guide.

LICENSE

Phabricator is released under the Apache 2.0 license except as otherwise noted.