ylqjgm
/
canvas-lms
mirror of https://github.com/instructure/canvas-lms.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
canvas-lms/lib/canvas
History
wdransfield bf4aaae0ed Add "future buffer" to iat validation for client credentials grant 
Closes PLAT-4157

Test Plan:
Attempt to retrieve an access token using a client credentials
grant. The iat of the claimshould be 10 seconds in the future.
Verify you are still able to retrieve an access token.

Verify you cannot retrieve an access token if the iat is more than
30 seconds in the future.

Change-Id: I884f569c3ab4bcafaaa459c70fe3d0c2326153cd
Reviewed-on: https://gerrit.instructure.com/178477
Reviewed-by: Marc Phillips <mphillips@instructure.com>
QA-Review: Marc Phillips <mphillips@instructure.com>
Tested-by: Jenkins
Product-Review: Weston Dransfield <wdransfield@instructure.com>
 		2019-01-18 17:54:58 +00:00
..
builders da licença part 27 2017-04-27 21:53:31 +00:00
cassandra da licença part 27 2017-04-27 21:53:31 +00:00
cdn Revert "Err if uploading different content to same CDN key" 2018-01-31 12:19:21 -07:00
core_ext da licença part 27 2017-04-27 21:53:31 +00:00
dynamic_settings add attachment specific subdomain if configured 2018-11-19 22:39:50 +00:00
errors dots and new lines 2018-01-17 16:56:26 +00:00
failure_percent_counter switch to redis server side script for failure percent counter 2017-01-19 23:41:39 +00:00
migration handle missing content on blueprint external export 2018-09-24 16:50:05 +00:00
oauth Handle string claims and protocol in client credentials grant 2019-01-16 19:12:22 +00:00
plugins properly show the session timeout from config 2018-09-18 19:36:56 +00:00
security Add "future buffer" to iat validation for client credentials grant 2019-01-18 17:54:58 +00:00
aws.rb da licença part 27 2017-04-27 21:53:31 +00:00
cdn.rb da licença part 27 2017-04-27 21:53:31 +00:00
crocodoc.rb da licença part 27 2017-04-27 21:53:31 +00:00
draft_state_validations.rb da licença part 27 2017-04-27 21:53:31 +00:00
dynamic_settings.rb allow configuring the default service tree for consul 2018-09-27 19:29:49 +00:00
error_stats.rb da licença part 27 2017-04-27 21:53:31 +00:00
errors.rb da licença part 27 2017-04-27 21:53:31 +00:00
event_stream_logger.rb da licença part 27 2017-04-27 21:53:31 +00:00
failure_percent_counter.rb da licença part 27 2017-04-27 21:53:31 +00:00
grade_validations.rb da licença part 27 2017-04-27 21:53:31 +00:00
hash_ring.rb Add copyright message to remaining .rb files 2018-03-19 13:38:50 +00:00
icu.rb codify our sorting cases in a spec 2018-03-14 21:05:57 +00:00
jwt_workflow.rb add can_create_pages to rich content jwt workflow 2017-05-19 21:35:31 +00:00
live_events.rb send live event on assignment group change via drag-and-drop 2018-10-18 22:30:11 +00:00
lock_explanation.rb don't double-escape module names in lock explanations 2018-01-12 12:49:41 +00:00
lockdown_browser.rb da licença part 27 2017-04-27 21:53:31 +00:00
message_helper.rb da licença part 27 2017-04-27 21:53:31 +00:00
migration.rb da licença part 27 2017-04-27 21:53:31 +00:00
outcome_import_validations.rb Outcome import creation/status endpoints 2018-03-05 19:22:03 +00:00
password_policy.rb da licença part 27 2017-04-27 21:53:31 +00:00
plugin.rb support RSA-SHA256 message signing for SAML 2018-03-05 23:47:35 +00:00
redis.rb don't skip setting cache during any other cache call 2018-08-29 20:03:11 +00:00
redis_config.rb da licença part 27 2017-04-27 21:53:31 +00:00
redis_wrapper.rb da licença part 27 2017-04-27 21:53:31 +00:00
reloader.rb protect against SIGHUP hooks crashing existing processes 2017-09-19 22:19:29 +00:00
request_forgery_protection.rb da licença part 27 2017-04-27 21:53:31 +00:00
security.rb make rcs handle missing secrets more gracefully 2018-09-17 03:39:00 +00:00
soft_deletable.rb delete scores when an assignment group is deleted 2018-01-04 20:33:02 +00:00
twilio.rb bump twilio-ruby 2018-03-23 15:04:17 +00:00