Skip to content

Commit

Permalink
docs: improve security
Browse files Browse the repository at this point in the history
  • Loading branch information
@dpgaspar
dpgaspar committed Oct 1, 2023
1 parent c6fecdc commit e30f170
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 4 deletions.
2 changes: 1 addition & 1 deletion CHANGELOG.rst
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ Flask-AppBuilder ChangeLog
Improvements and Bug fixes on 4.3.7
-----------------------------------

- fix: fix: swagger missing nonce (#2116) [Daniel Vaz Gaspar]
- fix: swagger missing nonce (#2116) [Daniel Vaz Gaspar]

Improvements and Bug fixes on 4.3.6
-----------------------------------
Expand Down
4 changes: 1 addition & 3 deletions docs/security.rst
View file
Original file line number Diff line number Diff line change
Expand Up @@ -350,7 +350,6 @@ To customize the userinfo retrieval, you can create your own method like this::
def my_user_info_getter(sm, provider, response=None):
if provider == "okta":
me = sm.oauth_remotes[provider].get("userinfo")
log.debug("User info from Okta: {0}".format(me.data))
return {
"username": "okta_" + me.data.get("sub", ""),
"first_name": me.data.get("given_name", ""),
Expand All @@ -368,8 +367,7 @@ To customize the userinfo retrieval, you can create your own method like this::
"id": me.json().get("sub", ""),
"role_keys": ["User"], # set AUTH_ROLES_SYNC_AT_LOGIN = False
}
else:
return {}
return {}

On Flask-AppBuilder 3.4.0 the login page has changed.

Expand Down

0 comments on commit e30f170

Please sign in to comment.