authelia/shared
Clement Michaud 40574bc8ec Fix the bypass strategy.
Before this fix an anonymous user was not able to access a resource
that were configured with a bypass policy. This was due to a useless
check of the userid in the auth session. Moreover, in the case of an
anonymous user, we should not check the inactivity period since there
is no session.

Also refactor /verify endpoint for better testability and add tests
in a new suite.
2019-03-22 23:51:36 +01:00
..
types Split client and server 2017-10-07 00:49:42 +02:00
api.ts [BREAKING] Create a suite for kubernetes tests. 2019-03-16 00:13:27 +01:00
AuthenticationLevel.ts Replace material-UI by material-components-web. 2019-03-03 11:39:40 +01:00
BelongToDomain.ts Fix open redirection vulnerability. 2018-11-17 17:48:20 +01:00
constants.ts Fix the bypass strategy. 2019-03-22 23:51:36 +01:00
DomainExtractor.spec.ts Log what is retrieved from headers to help debugging. 2019-03-22 15:34:38 +01:00
DomainExtractor.ts Fix open redirection vulnerability. 2018-11-17 17:48:20 +01:00
ErrorMessage.ts Add default_redirection_url as configuration option 2017-10-31 07:27:23 +01:00
RedirectionMessage.ts Add default_redirection_url as configuration option 2017-10-31 07:27:23 +01:00
SignMessage.ts Split client and server 2017-10-07 00:49:42 +02:00
UserMessages.ts Fix open redirection vulnerability. 2018-11-17 17:48:20 +01:00