1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2024-11-23 07:12:41 +01:00
phorge-phorge/webroot/rsrc
epriestley dbccfb234f Perform a client-side redirect after OAuth server authorization
Summary:
Ref T13099. See that task for discussion. Chrome is unhappy with an MFA form submitting to an endpoint which redirects you to an OAuth URI.

Instead, do the redirect entirely on the client.

Chrome's rationale here isn't obvious, so we may be able to revert this at some point.

Test Plan: Went through the OAuth flow locally, was redirected on the client. Will verify in production.

Maniphest Tasks: T13099

Differential Revision: https://secure.phabricator.com/D19177
2018-03-06 12:18:27 -08:00
..
audio/basic Add a few more sounds 2017-04-19 13:47:23 -07:00
css Improve live Harbormaster log follow behaviors 2018-03-01 13:11:22 -08:00
externals Never generate file download forms which point to the CDN domain, tighten "form-action" CSP 2018-02-28 17:20:12 -08:00
favicons Revert partial/nonfunctional OpenGraph support 2017-11-22 15:21:10 -08:00
image Uh, update Phabricator login image 2017-08-11 13:37:26 -07:00
js Perform a client-side redirect after OAuth server authorization 2018-03-06 12:18:27 -08:00