038d530565
Session ID is used as a parameter for the revoke session endpoint but it should never be included in the HTML as an attacker could obtain it via XSS. |
||
---|---|---|
.. | ||
accounts_controller.rb | ||
active_sessions_controller.rb | ||
application_controller.rb | ||
avatars_controller.rb | ||
chat_names_controller.rb | ||
emails_controller.rb | ||
gpg_keys_controller.rb | ||
keys_controller.rb | ||
notifications_controller.rb | ||
passwords_controller.rb | ||
personal_access_tokens_controller.rb | ||
preferences_controller.rb | ||
two_factor_auths_controller.rb | ||
u2f_registrations_controller.rb |