mirror of
1
Fork 0
forgejo/templates/user
zeripath b82293270c
Add option to provide signature for a token to verify key ownership (#14054)
* Add option to provide signed token to verify key ownership

Currently we will only allow a key to be matched to a user if it matches
an activated email address. This PR provides a different mechanism - if
the user provides a signature for automatically generated token (based
on the timestamp, user creation time, user ID, username and primary
email.

* Ensure verified keys can act for all active emails for the user

* Add code to mark keys as verified

* Slight UI adjustments

* Slight UI adjustments 2

* Simplify signature verification slightly

* fix postgres test

* add api routes

* handle swapped primary-keys

* Verify the no-reply address for verified keys

* Only add email addresses that are activated to keys

* Fix committer shortcut properly

* Restructure gpg_keys.go

* Use common Verification Token code

Signed-off-by: Andrew Thornton <art27@cantab.net>
2021-07-13 15:28:07 +02:00
..
auth Add better errors for disabled account recovery (#15117) 2021-06-25 23:16:36 -05:00
dashboard Implemented head_commit for webhooks (#16282) 2021-06-29 15:34:03 +02:00
notification Enforce tab indentation in templates (#15289) 2021-04-10 23:46:37 -04:00
settings Add option to provide signature for a token to verify key ownership (#14054) 2021-07-13 15:28:07 +02:00
heatmap.tmpl Remove fetch request from heatmap (#13623) 2020-11-18 16:00:16 -06:00
profile.tmpl Remove remaining fontawesome usage in templates (#15952) 2021-05-22 23:29:46 +02:00
project.tmpl Fix truncated organization names (#14655) 2021-02-12 03:29:07 +02:00