##// END OF EJS Templates
rhodecode-enterprise-ce
RSS
fix(2fa): fixed redirect loop in workflow when password reset was done.
super-admin -
r5370:6dc425cb default
parent child Browse files
Show More
Show file before | Show file after | Hide comments
@@ -144,6 +144,7 b' class BaseAppView(object):'
144 144 skip_user_views = [
145 145 "logout",
146 146 "login",
147 "check_2fa",
147 148 "my_account_password",
148 149 "my_account_password_update",
149 150 ]
Show file before | Show file after | Hide comments
@@ -26,6 +26,7 b' import urllib.parse'
26 26 from webob.exc import HTTPNotFound
27 27
28 28 import rhodecode
29 from rhodecode.apps._base import ADMIN_PREFIX
29 30 from rhodecode.lib.middleware.utils import get_path_info
30 31 from rhodecode.lib.middleware.appenlight import wrap_in_appenlight_if_enabled
31 32 from rhodecode.lib.middleware.simplegit import SimpleGit, GIT_PROTO_PAT
@@ -164,14 +165,18 b' def detect_vcs_request(environ, backends'
164 165 # login
165 166 "_admin/login",
166 167
168 # 2fa
169 f"{ADMIN_PREFIX}/check_2fa",
170 f"{ADMIN_PREFIX}/setup_2fa",
171
167 172 # _admin/api is safe too
168 '_admin/api',
173 f'{ADMIN_PREFIX}/api',
169 174
170 175 # _admin/gist is safe too
171 '_admin/gists++',
176 f'{ADMIN_PREFIX}/gists++',
172 177
173 178 # _admin/my_account is safe too
174 '_admin/my_account++',
179 f'{ADMIN_PREFIX}/my_account++',
175 180
176 181 # static files no detection
177 182 '_static++',
@@ -180,11 +185,11 b' def detect_vcs_request(environ, backends'
180 185 '_debug_toolbar++',
181 186
182 187 # skip ops ping, status
183 '_admin/ops/ping',
184 '_admin/ops/status',
188 f'{ADMIN_PREFIX}/ops/ping',
189 f'{ADMIN_PREFIX}/ops/status',
185 190
186 191 # full channelstream connect should be VCS skipped
187 '_admin/channelstream/connect',
192 f'{ADMIN_PREFIX}/channelstream/connect',
188 193
189 194 '++/repo_creating_check'
190 195 ]
General Comments 0
You need to be logged in to leave comments. Login now