Fix signin with OmniAuth providers (!2019) · Merge requests · GitLab.org / GitLab FOSS · GitLab

Snippets Groups Projects

Do not update/delete: Banner broadcast message test data

Do not update/delete: Notification broadcast message test data

Merged Douwe Maan requested to merge fix-omniauth-signin into master 9 years ago

OmniAuth CSRF protection was broken with the move to Rails 4.2 since the CSRF logic in Rails changed.

This new implementation calls out to Rails instead of copying its code, which is far easier to maintain.

Activity

Please register or sign in to reply