Only let users log in to an OAuth server if they can see it
7213eb01e030
Actions

Description

Only let users log in to an OAuth server if they can see it

Summary:
Fixes T7169. We just weren't doing a policy-aware query. Basic idea here is that if you set an app to be visible only to specific users, those specific users are the only ones who should be able to authorize it.

In the Phacility cluster, this allows us to prevent users who haven't been invited from logging in to an instance.

Test Plan:

Tried to log into an instance I was not a member of.
Logged into an instance I am a member of.

Reviewers: btrahan

Reviewed By: btrahan

Subscribers: epriestley

Maniphest Tasks: T7169

Differential Revision: https://secure.phabricator.com/D11696

Details

Provenance

epriestley	Authored on
epriestley	Pushed on Feb 5 2015, 6:57 PM

Reviewer

btrahan

Differential Revision

D11696: Only let users log in to an OAuth server if they can see it

Parents

rPdca27279cc55: README update - rely on bug reporting doc and add section about community chat

Branches

Unknown

Tags

Unknown

Tasks

T7169: Visibility of OAuth apps is not set correctly or is not checked correctly

Event Timeline

epriestley committed rP7213eb01e030: Only let users log in to an OAuth server if they can see it (authored by epriestley).Feb 5 2015, 6:57 PM

epriestley added a task: T7169: Visibility of OAuth apps is not set correctly or is not checked correctly.

• sagarnewase added a subscriber: • sagarnewase.Feb 6 2015, 1:07 PM

This comment was removed by • sagarnewase.

Changes (1)

Path

Size

src/

applications/

oauthserver/

controller/

PhabricatorOAuthServerAuthController.php

rP7213eb01e030

View Options

src/applications/oauthserver/controller/PhabricatorOAuthServerAuthController.php