projects / akkoma / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e2320f8) | patch
do not allow non-admins to register tokens with admin scopes
authorFloatingGhost <hannah@coffee-and-dreams.uk>
Fri, 16 Dec 2022 03:25:14 +0000 (03:25 +0000)
committerFloatingGhost <hannah@coffee-and-dreams.uk>
Fri, 16 Dec 2022 03:25:14 +0000 (03:25 +0000)
commitb8be8192fbfe8c27b457094e8d64ccb1c3a29f7f
treeb98beff83d40e1eddd5f8f977471952afb5a0767tree | snapshot
parente2320f870e6ef4e8fc9f63282cbd459e819d740acommit | diff
do not allow non-admins to register tokens with admin scopes

this didn't actually _do_ anything in the past,
the users would be prevented from accessing the resource,
but they shouldn't be able to even create them
lib/pleroma/web/o_auth/o_auth_controller.ex diff | blob | history
lib/pleroma/web/o_auth/scopes.ex diff | blob | history
test/pleroma/web/o_auth/o_auth_controller_test.exs diff | blob | history
Fork of https://akkoma.dev/AkkomaGang/akkoma.git