François Voron 7cf413cd76 Add a double-submit cookie in the OAuth flow ...

Prevents CSRF attacks by ensuring that the state parameter is tied to a cookie.

Fix https://github.com/fastapi-users/fastapi-users/security/advisories/GHSA-5j53-63w8-8625

2025-12-19 08:26:26 +01:00

..

__init__.py

Start foundations

2019-10-05 17:39:37 +02:00

conftest.py

Drop Python 3.9 support

2025-10-25 08:19:03 +02:00

test_authentication_authenticator.py

Drop Python 3.9 support

2025-10-25 08:19:03 +02:00

test_authentication_backend.py

Drop Python 3.9 support

2025-10-25 08:19:03 +02:00

test_authentication_strategy_db.py

Drop Python 3.9 support

2025-10-25 08:19:03 +02:00

test_authentication_strategy_jwt.py

Upgrade linting configuration

2024-02-05 09:20:38 +01:00

test_authentication_strategy_redis.py

Drop Python 3.9 support

2025-10-25 08:19:03 +02:00

test_authentication_transport_bearer.py

Revamp Transport so they always build a full Response object (#1049)

2023-04-27 09:32:49 +02:00

test_authentication_transport_cookie.py

Revamp Transport so they always build a full Response object (#1049)

2023-04-27 09:32:49 +02:00

test_db_base.py

Native model and generic ID (#971)

2022-05-05 14:51:19 +02:00

test_fastapi_users.py

Drop Pydantic v1 support

2025-10-25 08:27:54 +02:00

test_jwt.py

Add some manager tests

2021-09-15 15:20:28 +02:00

test_manager.py

Drop Python 3.9 support

2025-10-25 08:19:03 +02:00

test_openapi.py

Upgrade pytest-asyncio usage

2024-03-11 14:09:55 +01:00

test_router_auth.py

Fix depreciation warning

2025-10-24 18:06:39 +02:00

test_router_oauth.py

Add a double-submit cookie in the OAuth flow

2025-12-19 08:26:26 +01:00

test_router_register.py

Fix depreciation warning

2025-10-24 18:06:39 +02:00

test_router_reset.py

Fix depreciation warning

2025-10-24 18:06:39 +02:00

test_router_users.py

Drop Python 3.8 support

2024-11-03 12:51:32 +00:00

test_router_verify.py

Fix depreciation warning

2025-10-24 18:06:39 +02:00