wangchunlin
/
cvat
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix vulnerability (#5521)

Browse Source
main
Maria Khrustaleva 3 years ago committed by GitHub
parent 3c8ac1ef7d
commit 75b338b549
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File

2
CHANGELOG.md
Unescape Escape View File

@ -22,7 +22,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
- Helm: Empty password for Redis (<https://github.com/opencv/cvat/pull/5520>) - Helm: Empty password for Redis (<https://github.com/opencv/cvat/pull/5520>)
### Security ### Security
- TDB - Fixed vulnerability with social authentication (<https://github.com/opencv/cvat/pull/5521>)
## \[2.3.0] - 2022-12-22 ## \[2.3.0] - 2022-12-22
### Added ### Added

4
cvat/apps/engine/views.py
Unescape Escape View File

@ -251,12 +251,12 @@ class ServerViewSet(viewsets.ViewSet):
def advanced_authentication(request): def advanced_authentication(request):
use_social_auth = settings.USE_ALLAUTH_SOCIAL_ACCOUNTS use_social_auth = settings.USE_ALLAUTH_SOCIAL_ACCOUNTS
integrated_auth_providers = settings.SOCIALACCOUNT_PROVIDERS.keys() if use_social_auth else [] integrated_auth_providers = settings.SOCIALACCOUNT_PROVIDERS.keys() if use_social_auth else []
google_auth_is_enabled = ( google_auth_is_enabled = bool(
'google' in integrated_auth_providers 'google' in integrated_auth_providers
and settings.SOCIAL_AUTH_GOOGLE_CLIENT_ID and settings.SOCIAL_AUTH_GOOGLE_CLIENT_ID
and settings.SOCIAL_AUTH_GOOGLE_CLIENT_SECRET and settings.SOCIAL_AUTH_GOOGLE_CLIENT_SECRET
) )
github_auth_is_enabled = ( github_auth_is_enabled = bool(
'github' in integrated_auth_providers 'github' in integrated_auth_providers
and settings.SOCIAL_AUTH_GITHUB_CLIENT_ID and settings.SOCIAL_AUTH_GITHUB_CLIENT_ID
and settings.SOCIAL_AUTH_GITHUB_CLIENT_SECRET and settings.SOCIAL_AUTH_GITHUB_CLIENT_SECRET

Write Preview
Loading…
Cancel
Save