Revert "Merge branch 'patch-43' into 'master'"
This reverts merge request !25195
This commit is contained in:
parent
e6a88b024f
commit
8835bdad1d
|
@ -21,10 +21,10 @@ To get the credentials (a pair of Client ID and Client Secret), you must registe
|
||||||
- Application name: This can be anything. Consider something like `<Organization>'s GitLab` or `<Your Name>'s GitLab` or something else descriptive.
|
- Application name: This can be anything. Consider something like `<Organization>'s GitLab` or `<Your Name>'s GitLab` or something else descriptive.
|
||||||
- Homepage URL: The URL of your GitLab installation. For example, `https://gitlab.example.com`.
|
- Homepage URL: The URL of your GitLab installation. For example, `https://gitlab.example.com`.
|
||||||
- Application description: Fill this in if you wish.
|
- Application description: Fill this in if you wish.
|
||||||
- Authorization callback URL: `http(s)://${YOUR_DOMAIN}/users/auth/github/callback`. Please make sure the port is included if your GitLab instance is not configured on default port.
|
- Authorization callback URL: `http(s)://${YOUR_DOMAIN}/users/auth`. Please make sure the port is included if your GitLab instance is not configured on default port.
|
||||||
![Register OAuth App](img/github_register_app.png)
|
![Register OAuth App](img/github_register_app.png)
|
||||||
|
|
||||||
NOTE: Be sure to append `/users/auth/github/callback` to the end of the callback URL
|
NOTE: Be sure to append `/users/auth` to the end of the callback URL
|
||||||
to prevent a [OAuth2 convert
|
to prevent a [OAuth2 convert
|
||||||
redirect](http://tetraph.com/covert_redirect/) vulnerability.
|
redirect](http://tetraph.com/covert_redirect/) vulnerability.
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue