Oliver Günther b5350cccf7 Add rack-attack throttler for all logins ...

We have a built-in bruteforce protection for built-in users. When users
are being created from LDAP on-the-fly, these limits cannot apply, as we
do not have a user object yet.

Instead, we can provide a more generous throttler to block attempts

2026-05-29 12:33:28 +02:00

..

admin

Update password rules when none is checked. wp/74398

2026-04-30 10:10:36 +02:00

api/v3

Extract and use charset to properly serve inline text attachments (#23432)

2026-05-29 10:51:37 +02:00

auth

Merge release/16.0 into dev

2025-05-16 14:56:25 +02:00

enterprise_trials

Implement trial status checks

2025-06-13 14:47:44 +02:00

mcp

Revert "Switch tests back to initial expectations"

2026-05-21 13:14:38 +02:00

messages

Fix forum routes & tests

2026-02-09 15:07:55 +01:00

my

Add and adapt specs

2025-09-24 13:46:09 +02:00

news

fix problems uncovered in routing specs

2026-02-09 15:08:11 +01:00

notifications

Freeze string literals in specs

2025-05-05 09:29:55 +02:00

oauth

Add specs for newly added oauth metadata endpoints

2025-12-15 11:17:44 +01:00

oauth_clients

[chore] fixed test expectations for users not logged in

2026-05-12 08:13:14 +02:00

projects

Merge branch 'release/17.3' into dev

2026-04-02 04:19:56 +00:00

rate_limiting

Add rack-attack throttler for all logins

2026-05-29 12:33:28 +02:00

scim_v2

[#73431] Add tests for duplicate SCIM v2 user results

2026-03-26 13:50:32 +05:30

wiki

Freeze string literals in specs

2025-05-05 09:29:55 +02:00

dynamic_content_security_policy_spec.rb

Allow overriding the default wide img-src content security policy

2026-05-05 11:12:18 +02:00

openid_google_provider_callback_spec.rb

Freeze string literals in specs

2025-05-05 09:29:55 +02:00

statuses_spec.rb

Render with status: :unprocessable_entity

2024-10-11 08:42:58 +02:00