Skip to content

G
gitlab-ce
Commit 19a38a0a authored by Gabriel Mazetto's avatar Gabriel Mazetto
Browse files
Options

Geo OAuth authentication should use 'bypass: true' to prevent writing 

to the database
parent 5316aa63
Hide whitespace changes
Inline Side-by-side
Showing with 2 additions and 2 deletions
app/controllers/admin/geo_nodes_controller.rb
View file @ 19a38a0a
...@@ -24,7 +24,7 @@ class Admin::GeoNodesController < Admin::ApplicationController ...@@ -24,7 +24,7 @@ class Admin::GeoNodesController < Admin::ApplicationController
def repair def repair
@node = GeoNode.find(params[:id]) @node = GeoNode.find(params[:id])
if @node.primary? || !@node.missing_oauth_application? if @node.primary? || !@node.missing_oauth_application?
redirect_to admin_geo_nodes_path, notice: "This node doesn't need to be repaired." redirect_to admin_geo_nodes_path, notice: "This node doesn't need to be repaired."
elsif @node.save elsif @node.save
......
app/controllers/oauth/geo_auth_controller.rb
View file @ 19a38a0a
...@@ -25,7 +25,7 @@ class Oauth::GeoAuthController < ActionController::Base ...@@ -25,7 +25,7 @@ class Oauth::GeoAuthController < ActionController::Base
user = User.find(remote_user['id']) user = User.find(remote_user['id'])
if user && sign_in(user) if user && sign_in(user, bypass: true)
return_to = oauth.get_oauth_state_return_to return_to = oauth.get_oauth_state_return_to
redirect_to(return_to || root_path) redirect_to(return_to || root_path)
else else
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7