diff options
author | Imre Farkas <ifarkas@gitlab.com> | 2019-02-25 16:52:40 +0300 |
---|---|---|
committer | Imre Farkas <ifarkas@gitlab.com> | 2019-02-27 13:45:27 +0300 |
commit | 038d530565bc64729706bbd9afad275699be459d (patch) | |
tree | 7cb6741e2490a943a8e3dc1e61011bc7e56385ae /doc/user/profile/img | |
parent | 44c4aad983570ea1832aa08c39f46dbc1b475fd3 (diff) |
Remove ability to revoke active session
Session ID is used as a parameter for the revoke session endpoint but it
should never be included in the HTML as an attacker could obtain it via
XSS.
Diffstat (limited to 'doc/user/profile/img')
-rw-r--r-- | doc/user/profile/img/active_sessions_list.png | bin | 22266 -> 19360 bytes |
1 files changed, 0 insertions, 0 deletions
diff --git a/doc/user/profile/img/active_sessions_list.png b/doc/user/profile/img/active_sessions_list.png Binary files differindex 5d94dca69cc..1e242ac4710 100644 --- a/doc/user/profile/img/active_sessions_list.png +++ b/doc/user/profile/img/active_sessions_list.png |