bd1e8be328
Implement change-email, email-verification, account-recovery, and welcome notifications
2019-11-24 22:28:49 -07:00
2edecf34ff
Use user_uuid instead of mut twofactor
2019-10-15 21:20:19 +02:00
18bc8331f9
Send email when preparing 2FA JsonError
2019-10-15 21:19:49 +02:00
ebf40099f2
Updated authenticator TOTP
...
- Added security check for previouse used codes
- Allow TOTP codes with 1 step back and forward when there is a time
drift. This means in total 3 codes could be valid. But only newer codes
then the previouse used codes are excepted after that.
2019-10-10 17:32:20 +02:00
5d50b1ee3c
Merge remote-tracking branch 'upstream/master' into email-codes
2019-08-26 21:38:45 +02:00
ee7837d022
Add option to require new device emails
2019-08-19 22:14:00 +02:00
07743e490b
Ignore error sending device email
2019-08-18 19:32:26 +02:00
6d460b44b0
Use saved token for email 2fa codes
2019-08-04 17:21:57 +02:00
efd8d9f528
Remove some unused imports, unneeded mut variables
2019-08-04 16:56:41 +02:00
29aedd388e
Add email code logic and move two_factor into separate modules
2019-08-04 16:56:41 +02:00
27e0e41835
Add email authenticator logic
2019-08-04 16:56:39 +02:00
df71f57d86
Move send device email to end of password login
...
Send new device email after two factor authentication.
2019-07-25 21:10:27 +02:00
60e39a9dd1
Move retrieve/new device from connData to separate function
2019-07-22 12:30:26 +02:00
bc6a53b847
Add new device email when user logs in
2019-07-22 08:26:24 +02:00
e22e290f67
Fix key and type variable names for mysql
2019-05-20 21:24:29 +02:00
253faaf023
Use users duo host when required, instead of always using the global one
2019-04-15 13:07:23 +02:00
8d9827c55f
Implement selection between global config and user settings for duo keys.
2019-04-11 18:40:03 +02:00
754087b990
Add global duo config and document options in .env template
2019-04-07 18:58:15 +02:00
cfbeb56371
Implement user duo, initial version
...
TODO:
- At the moment each user needs to configure a DUO application and input the API keys, we need to check if multiple users can register with the same keys correctly and if so we could implement a global setting.
- Sometimes the Duo frame doesn't load correctly, but canceling, reloading the page and logging in again seems to fix it for me.
2019-04-05 22:09:53 +02:00
7d2bc9e162
Added option to force 2fa at logins and made some changes to two factor code.
...
Added newlines to config options to keep them a reasonable length.
2019-03-03 16:09:15 +01:00
5ee04e31e5
Updated dependencies, removed some unnecessary clones and fixed some lints
2019-02-20 17:54:18 +01:00
9636f33fdb
Implement constant time equal check for admin, 2fa recover and 2fa remember tokens
2019-02-11 23:45:55 +01:00
700e084101
Add 2FA icon to admin panel
2019-01-25 18:50:57 +01:00
a1dc47b826
Change config to thread-safe system, needed for a future config panel.
...
Improved some two factor methods.
2019-01-25 18:24:57 +01:00
30e768613b
Start using rustfmt and some style changes to make some lines shorter
2018-12-30 23:34:31 +01:00
6a99849a1e
Implemented proper error handling, now we can do `user.save($conn)?;` and it works.
...
In the future, maybe we can do the same with the `find_by_id` methods that return an Option.
2018-12-30 21:31:12 +01:00
5a9aab1a32
Implement fromform, and ignore case and underscores, fixes #298
2018-12-16 20:00:16 +01:00
e26e2319da
Close #264 . Usernames and IP addresses are logged on successful authentication
2018-12-11 15:20:06 -05:00
7adc045b80
Updated IP logging to use client_ip, to match old remote behavior.
...
Improved error logging, now it won't show a generic error message in some situations.
Removed delete device, which is not needed as it will be overwritten later.
Logged more info when an error occurs saving a device.
Added orgmanager to JWT claims.
2018-12-09 17:58:38 +01:00
738ad2127b
Fixed some clippy linting issues
2018-12-07 15:01:29 +01:00
cb930a0858
Remove some required values during login, now uses default values
2018-12-07 14:32:40 +01:00
94810c106a
Migrate to rust 2018 edition
2018-12-07 02:05:45 +01:00
5edbd0e952
Merge branch 'master' into rocket-0.4
...
# Conflicts:
# Cargo.lock
# Cargo.toml
# src/api/core/mod.rs
2018-11-19 19:52:43 +01:00
f344dbaad4
Fixes NFC Response for Mobile Login
2018-11-17 01:25:07 -07:00
9e0e4b13c5
Adds Yubikey OTP Support
2018-11-15 18:43:09 -07:00
bc532f54d5
Improve login query parsing
2018-11-01 19:25:10 +01:00
c673370103
Updated bw_rs to Rocket version 0.4-rc1
2018-11-01 19:25:09 +01:00
58a78ffa54
Device::save() should return QueryResult instead of bool
2018-10-14 16:17:37 +02:00
a28caa33ef
Implement poor man's admin panel
2018-10-12 15:20:10 +01:00
8651df8c2a
Fixed some lint issues
2018-09-13 21:55:23 +02:00
948554a20f
Added config option for websocket port, and reworked the config parsing a bit.
...
Added SMTP_FROM config to examples and made it mandatory, it doesn't make much sense to not specify the from address.
2018-09-13 20:59:51 +02:00
c386b3bcf7
Add IP and Username to failed login attempts
...
Resolves #119
2018-08-25 17:07:59 -05:00
819622e310
Documented U2F, removed debug prints, and documented missing features
2018-07-13 15:58:50 +02:00
dae92b9018
Implemented U2F, refactored Two Factor authentication, registering U2F device and authentication should work. Works on Chrome on MacOS with a virtual device.
2018-07-12 22:22:10 +02:00
9f8183deb0
Remove some extra debug prints
2018-07-01 14:48:18 +01:00
483066b9a0
Some style changes, removed useless matches and formats
2018-06-11 15:44:37 +02:00
b0ee5f6570
Improved two factor auth
2018-06-01 15:08:03 +02:00
4093bf92fe
Initial organizations functionality: Creating orgs and inviting users
2018-04-24 22:01:55 +02:00
dfefbf1f31
Fixed cipher import, created missing data structs instead of using generic Value, and fixed some warnings
2018-02-23 00:38:54 +01:00
d6a1a9b274
Detect device type correctly and shorten return types of functions
2018-02-17 22:28:15 +01:00
tomuta
vpl
BlackDex
Daniel García
Emil Madsen
algebro
Stepan Fedorko-Bartos
janost
Miroslav Prasil
Baelyk
Daniel García