Imre Farkas
|
038d530565
|
Remove ability to revoke active session
Session ID is used as a parameter for the revoke session endpoint but it
should never be included in the HTML as an attacker could obtain it via
XSS.
|
2019-02-27 11:45:27 +01:00 |
Imre Farkas
|
44c4aad983
|
Filter active sessions belonging to an admin impersonating the user
|
2019-02-27 11:44:58 +01:00 |
Winnie Hellmann
|
3db2f32759
|
Enable Capybara/FeatureMethods cop
|
2018-07-05 06:32:05 +00:00 |
Alexis Reigel ( 🌴 may 2nd - may 9th 🌴 )
|
9b33e3d36f
|
Display and revoke active sessions
|
2018-05-02 08:08:16 +00:00 |