253faaf023
Use users duo host when required, instead of always using the global one
2019-04-15 13:07:23 +02:00
8d9827c55f
Implement selection between global config and user settings for duo keys.
2019-04-11 18:40:03 +02:00
754087b990
Add global duo config and document options in .env template
2019-04-07 18:58:15 +02:00
cfbeb56371
Implement user duo, initial version
...
TODO:
- At the moment each user needs to configure a DUO application and input the API keys, we need to check if multiple users can register with the same keys correctly and if so we could implement a global setting.
- Sometimes the Duo frame doesn't load correctly, but canceling, reloading the page and logging in again seems to fix it for me.
2019-04-05 22:09:53 +02:00
7d2bc9e162
Added option to force 2fa at logins and made some changes to two factor code.
...
Added newlines to config options to keep them a reasonable length.
2019-03-03 16:09:15 +01:00
5ee04e31e5
Updated dependencies, removed some unnecessary clones and fixed some lints
2019-02-20 17:54:18 +01:00
9636f33fdb
Implement constant time equal check for admin, 2fa recover and 2fa remember tokens
2019-02-11 23:45:55 +01:00
700e084101
Add 2FA icon to admin panel
2019-01-25 18:50:57 +01:00
a1dc47b826
Change config to thread-safe system, needed for a future config panel.
...
Improved some two factor methods.
2019-01-25 18:24:57 +01:00
30e768613b
Start using rustfmt and some style changes to make some lines shorter
2018-12-30 23:34:31 +01:00
6a99849a1e
Implemented proper error handling, now we can do `user.save($conn)?;` and it works.
...
In the future, maybe we can do the same with the `find_by_id` methods that return an Option.
2018-12-30 21:31:12 +01:00
5a9aab1a32
Implement fromform, and ignore case and underscores, fixes #298
2018-12-16 20:00:16 +01:00
e26e2319da
Close #264 . Usernames and IP addresses are logged on successful authentication
2018-12-11 15:20:06 -05:00
7adc045b80
Updated IP logging to use client_ip, to match old remote behavior.
...
Improved error logging, now it won't show a generic error message in some situations.
Removed delete device, which is not needed as it will be overwritten later.
Logged more info when an error occurs saving a device.
Added orgmanager to JWT claims.
2018-12-09 17:58:38 +01:00
738ad2127b
Fixed some clippy linting issues
2018-12-07 15:01:29 +01:00
cb930a0858
Remove some required values during login, now uses default values
2018-12-07 14:32:40 +01:00
94810c106a
Migrate to rust 2018 edition
2018-12-07 02:05:45 +01:00
5edbd0e952
Merge branch 'master' into rocket-0.4
...
# Conflicts:
# Cargo.lock
# Cargo.toml
# src/api/core/mod.rs
2018-11-19 19:52:43 +01:00
f344dbaad4
Fixes NFC Response for Mobile Login
2018-11-17 01:25:07 -07:00
9e0e4b13c5
Adds Yubikey OTP Support
2018-11-15 18:43:09 -07:00
bc532f54d5
Improve login query parsing
2018-11-01 19:25:10 +01:00
c673370103
Updated bw_rs to Rocket version 0.4-rc1
2018-11-01 19:25:09 +01:00
58a78ffa54
Device::save() should return QueryResult instead of bool
2018-10-14 16:17:37 +02:00
a28caa33ef
Implement poor man's admin panel
2018-10-12 15:20:10 +01:00
8651df8c2a
Fixed some lint issues
2018-09-13 21:55:23 +02:00
948554a20f
Added config option for websocket port, and reworked the config parsing a bit.
...
Added SMTP_FROM config to examples and made it mandatory, it doesn't make much sense to not specify the from address.
2018-09-13 20:59:51 +02:00
c386b3bcf7
Add IP and Username to failed login attempts
...
Resolves #119
2018-08-25 17:07:59 -05:00
819622e310
Documented U2F, removed debug prints, and documented missing features
2018-07-13 15:58:50 +02:00
dae92b9018
Implemented U2F, refactored Two Factor authentication, registering U2F device and authentication should work. Works on Chrome on MacOS with a virtual device.
2018-07-12 22:22:10 +02:00
9f8183deb0
Remove some extra debug prints
2018-07-01 14:48:18 +01:00
483066b9a0
Some style changes, removed useless matches and formats
2018-06-11 15:44:37 +02:00
b0ee5f6570
Improved two factor auth
2018-06-01 15:08:03 +02:00
4093bf92fe
Initial organizations functionality: Creating orgs and inviting users
2018-04-24 22:01:55 +02:00
dfefbf1f31
Fixed cipher import, created missing data structs instead of using generic Value, and fixed some warnings
2018-02-23 00:38:54 +01:00
d6a1a9b274
Detect device type correctly and shorten return types of functions
2018-02-17 22:28:15 +01:00
84a75c871b
Improved error messagees, implemented delete ciphers, attachments and account, implemented two factor recovery.
...
Known missing:
- import ciphers, create ciphers types other than login and card, update ciphers
- clear and put device_tokens
- Equivalent domains
- Organizations
2018-02-15 19:05:57 +01:00
31bf2bc2b1
Solved some warnings
2018-02-15 00:53:11 +01:00
5cd40c63ed
First working version
2018-02-10 01:00:55 +01:00
Daniel García
algebro
Stepan Fedorko-Bartos
janost
Miroslav Prasil
Baelyk
Daniel García