Posted by Justin Bull on Aug 22

Good evening everyone,

A security bulletin for all of you.

Software:
——–
Doorkeeper (https://github.com/doorkeeper-gem/doorkeeper)

Description:
———-
Doorkeeper is an OAuth 2 provider for Rails written in Ruby.

Affected Versions:
—————
1.2.0 – 4.1.0 (all versions but latest patch supporting token revocation)

Fixed Versions:
————-
4.2.0 or apply this commit[0]

Problem:
——–
Doorkeeper failed to implement OAuth…