Skip to content


Subversion checkout URL

You can clone with
Download ZIP
Commits on Jul 10, 2015
  1. Merge pull request #366 from covertgeek/develop

    Modified check_token function to handle list-type JSON post
  2. Merge pull request #400 from feliciaan/patch-1

    Fixes a small spelling error
Commits on Jul 6, 2015
  1. @covertgeek
  2. @covertgeek
Commits on Jun 28, 2015
  1. @feliciaan

    Fixes a small spelling error

    feliciaan authored
Commits on Jun 25, 2015
  1. Merge pull request #398 from jonafato/bcrypt-hotfix

    Restrict bcrypt to <2.0.0
Commits on Jun 23, 2015
  1. @jonafato

    Restrict bcrypt to <2.0.0

    jonafato authored
    As of 2.0.0, passlib no longer correctly identifies bcrypt as bcrypt
    (instead, it mistakenly applies pybcrypt logic to bcrypt). This results
    in all Python 3 logic involving bcrypt failing. As a hotfix, we should
    require users to be on a version of bcrypt that passlib can handle a fix
    can be pushed into passlib.
Commits on May 26, 2015
  1. Merge pull request #389 from nickretallack/develop

    Reset Password Fixes
Commits on May 12, 2015
  1. @nickretallack

    test: reset password on a user who has no password

    nickretallack authored
    The user may have been invited via a social network or an invitation
  2. @nickretallack

    ignore the eggs readme

    nickretallack authored
  3. @nickretallack

    test: invalidate used password reset tokens

    nickretallack authored
    Also pep8 compliance and suggested changes.
  4. @nickretallack

    invalidate password reset tokens when the passwords changes

    nickretallack authored
    Check that the previous password is the same as it was when this
    password reset request was generated.
  5. @nickretallack

    prevent password reset from breaking if you have no password

    nickretallack authored
    If you've just been invited, or are using social auth, you have no
    password set, so the reset password feature causes a crash.  This
    doesn't need to happen.
Commits on May 2, 2015
  1. Fix failing test

  2. Merge pull request #255 from nfvs/unauthorized_override

    Allow overriding of an unauthorized callback.
  3. Fix pymongo version issue

  4. @nfvs

    Allow overriding of unauthorized callback.

    nfvs authored
    Related to issue #255.
  5. Merge pull request #373 from lnielsen/anonymoususer

    Add support for custom AnonymousUser class.
  6. Fix #367

  7. Merge pull request #363 from jeffwidman/patch-1

    "overrided" --> "overriden"
  8. Merge pull request #361 from nfvs/add_headers_to_auth_required

    Include WWW-Authenticate headers in @auth_required.
  9. Merge pull request #352 from fuhrysteve/develop

    X-Forwarded-For can contain multiple IP addresses
  10. Merge pull request #351 from denizdogan/master

    Add documentation about SECURITY_MSG configuration variables.
  11. Merge pull request #347 from Jaza/slash-url-suffix

    re #343: Add slash before or after token in flask-security URLs correctly
  12. Merge pull request #342 from alexef/patch-1

    Fail silently for get_user(None)
  13. Merge pull request #331 from Diaoul/patch-2

    Fix ActivateUserCommand docstring
  14. Merge pull request #330 from Diaoul/patch-1

    Fix RemoveRoleCommand docstring
  15. Merge pull request #322 from waltaskew/develop

    Add configuration for token expiration
Commits on Mar 6, 2015
  1. @lnielsen

    Fix PEP8 error.

    lnielsen authored
  2. @lnielsen

    Custom AnonymousUser support.

    lnielsen authored
    (addresses #362)
Something went wrong with that request. Please try again.