- 25 Apr, 2017 1 commit
-
-
Timothy Andrew authored
- To prevent an attacker from enumerating the `/users` API to get a list of all the admins. - Display the `is_admin?` flag wherever we display the `private_token` - at the moment, there are two instances: - When an admin uses `sudo` to view the `/user` endpoint - When logging in using the `/session` endpoint
-
- 24 Mar, 2017 1 commit
-
-
blackst0ne authored
-
- 06 Mar, 2017 2 commits
-
-
Adam Niedzielski authored
-
Adam Niedzielski authored
-
- 28 Feb, 2017 1 commit
-
-
Valery Sizov authored
-
- 15 Feb, 2017 1 commit
-
-
Annabel Dunstone Gray authored
-
- 03 Feb, 2017 2 commits
-
-
Douglas Barbosa Alexandre authored
-
Douglas Barbosa Alexandre authored
-
- 07 Dec, 2016 1 commit
-
-
tiagonbotelho authored
-
- 19 Oct, 2016 1 commit
-
-
Douglas Barbosa Alexandre authored
-
- 13 Oct, 2016 1 commit
-
-
Sean McGivern authored
-
- 11 Oct, 2016 2 commits
-
-
Douglas Barbosa Alexandre authored
-
Douglas Barbosa Alexandre authored
-
- 07 Oct, 2016 2 commits
-
-
Phil Hughes authored
-
Douglas Barbosa Alexandre authored
-
- 31 Aug, 2016 1 commit
-
-
Douglas Barbosa Alexandre authored
-
- 19 Aug, 2016 1 commit
-
-
Douglas Barbosa Alexandre authored
-
- 17 Aug, 2016 7 commits
-
-
Douglas Barbosa Alexandre authored
-
Douglas Barbosa Alexandre authored
-
Douglas Barbosa Alexandre authored
-
Douglas Barbosa Alexandre authored
-
Douglas Barbosa Alexandre authored
-
Douglas Barbosa Alexandre authored
-
Douglas Barbosa Alexandre authored
-