authelia

Commit Graph

Author	SHA1	Message	Date
Clement Michaud	40574bc8ec	Fix the bypass strategy. Before this fix an anonymous user was not able to access a resource that were configured with a bypass policy. This was due to a useless check of the userid in the auth session. Moreover, in the case of an anonymous user, we should not check the inactivity period since there is no session. Also refactor /verify endpoint for better testability and add tests in a new suite.	2019-03-22 23:51:36 +01:00

Author

SHA1

Message

Date

Clement Michaud

40574bc8ec

Fix the bypass strategy.

Before this fix an anonymous user was not able to access a resource
that were configured with a bypass policy. This was due to a useless
check of the userid in the auth session. Moreover, in the case of an
anonymous user, we should not check the inactivity period since there
is no session.

Also refactor /verify endpoint for better testability and add tests
in a new suite.

2019-03-22 23:51:36 +01:00

1 Commits (87e06e6528eb91494c9dd30ab8d2234bf4add3ea)