2c68cf7e9e
(`POST /api/v1/apps` could create "Mastodon-Local" app wth any redirect_uris, and if that happened before /web/login is accessed for the first time then Pleroma used this externally created record with arbitrary redirect_uris and client_secret known by creator). |
||
---|---|---|
.. | ||
app.ex | ||
authorization.ex | ||
fallback_controller.ex | ||
oauth_controller.ex | ||
oauth_view.ex | ||
token.ex |