git.postgresql.org Git - pgweb.git/commit

projects / pgweb.git / commit

summary | shortlog | log | commit | commitdiff | tree
(parent: e48157d) | patch

author	Magnus Hagander <magnus@hagander.net>
	Wed, 11 Jun 2025 10:29:24 +0000 (12:29 +0200)
committer	Magnus Hagander <magnus@hagander.net>
	Wed, 11 Jun 2025 18:34:09 +0000 (20:34 +0200)
commit	e001690d4d966ab539f4bf5dd0b077371ba27c01
tree	a431308cd2bd1af3dd8d05c6c475ff1f5ad12087	tree
parent	e48157dac3fb6fd3e8984ac27333fe0380418907	commit \| diff

Use POST when sending to third party oauth

Instead of prepopulating a GET request that could generate a session,
createa a form with different submit buttons and use that. In the brave
new world of AI bots, nobody cares about robots.txt anymore, so we'd get
hit by a lot of requests specifically for these logins that were then
thrown away because they couldn't log in on the third party site.

media/css/main.css		diff \| blob \| blame \| history
pgweb/account/oauthclient.py		diff \| blob \| blame \| history
pgweb/account/urls.py		diff \| blob \| blame \| history
templates/account/login.html		diff \| blob \| blame \| history

This is the code for the postgresql.org website