[SECURITY] Fix Authentication HTTP Status Codes (#959) - matthieu/authelia-kerberos.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	James Elliott <james-d-elliott@users.noreply.github.com>	2020-05-06 07:27:38 +1000
committer	GitHub <noreply@github.com>	2020-05-06 07:27:38 +1000
commit	50f12bc4a488195277f6c51131a6e50969c05edc (patch)
tree	cab54d4a953a54c7494a7c23317567691344c891 /internal/authentication/file_user_provider.go
parent	7ac6c16e24da244fc3d633b90a50f674176b86d9 (diff)

[SECURITY] Fix Authentication HTTP Status Codes (#959)

* [FIX] Send correct HTTP status codes for 1FA * use harmonious func to handle all 1FA attempt errors * use same harmonious func to handle 2FA attempt errors * always send a 401 which is correct according to https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401 * fix tests * refactor isTargetURLAuthorized * fix padding and imports * harmonize remaining return messages * fixup docs and layout of verifySessionHasUpToDateProfile

Diffstat (limited to 'internal/authentication/file_user_provider.go')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: