BigW Consortium Gitlab
Skip to content
Projects
Groups
Snippets
Help
This project
Loading...
Sign in / Register
Toggle navigation
G
gitlab-ce
Project
Overview
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
Registry
Registry
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Commits
Issue Boards
Open sidebar
Forest Godfrey
gitlab-ce
Commits
4977a167
Unverified
Commit
4977a167
authored
Sep 27, 2016
by
Rémy Coutable
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Fix typo `CSFR` -> `CSRF` in the OAuth2 doc
[ci skip] Signed-off-by:
Rémy Coutable
<
remy@rymai.me
>
parent
1025b390
Show whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
1 addition
and
1 deletion
+1
-1
oauth2.md
doc/api/oauth2.md
+1
-1
No files found.
doc/api/oauth2.md
View file @
4977a167
...
...
@@ -48,7 +48,7 @@ You should then use the `code` to request an access token.
>**Important:**
It is highly recommended that you send a
`state`
value with the request to
`/oauth/authorize`
and
validate that value is returned and matches in the redirect request.
This is important to prevent
[
CS
FR attacks
](
http://www.oauthsecurity.com/#user-content-authorization-code-flow
)
,
This is important to prevent
[
CS
RF attacks
](
http://www.oauthsecurity.com/#user-content-authorization-code-flow
)
,
`state`
really should have been a requirement in the standard!
### 3. Requesting the access token
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment