extern/2FAuth
1
0
Fork 0
mirror of https://github.com/Bubka/2FAuth.git synced 2024-11-29 19:53:11 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,716 Commits 4 Branches 48 Tags 26 MiB
091129ef06
Commit Graph

551 Commits

Author SHA1 Message Date
Bubka
085eb25532 Handle Validation errors from webauthn during device registration (#200) 2023-07-05 10:07:40 +02:00
Bubka
7037265237 Show spinners while OTPs are refreshing 2023-06-30 17:31:05 +02:00
Bubka
a51f0bb2d9 Merge branch 'hotfix-sql-xss-injection' into dev 2023-06-30 17:01:04 +02:00
Bubka
bac39882c3 Fix various possible XSS attacks 2023-06-30 14:50:57 +02:00
Bubka
e36beaefd0 Fix missing icon when creating a 2FA with a qrcode upload 2023-05-29 11:39:10 +02:00
Bubka
a15160319e Simplify Dots component & Fix TotpLooper refresh latency 2023-05-29 11:33:30 +02:00
Bubka
b8c810f885 Generate and Show all OTPs directly on the main view - Complete #153 2023-04-28 17:03:06 +02:00
Bubka
4f81b30fcd Add admin setting to disable user registration - Complete #170 2023-04-28 16:52:04 +02:00
Josh
82d467ecb4
Bug fix for issue #180 (#187) 
* Distinguish between a manually triggered copy and a copyOtpOnDisplay to fix #180 
* fix spaces
 2023-04-25 13:34:04 +02:00
Josh
68e3a8d100 Add the spinner component to App.vue instead of Accounts.vue so that is usable from all pages. 
Update showSpinner function to accept the message to be displayed, defaults to 'loading' if none is provided.
 2023-04-24 23:09:50 +12:00
Josh
b9780087cc Remove the custom spinner and reuse the fontawesome one that is already used in other areas. 2023-04-24 19:51:41 +12:00
Josh
0727428716 Renamed Loader to Spinner, added theming and localization 2023-04-24 19:30:23 +12:00
Josh
69c688e4ea Very basic Loader component for use on Accounts.vue (still needs styling etc.) 2023-04-24 18:10:13 +12:00
Bubka
e4c9e87522 Fix icon fetched twice or forgotten during import 2023-03-29 17:43:41 +02:00
Bubka
aaa343e316 Fix theme not being applied after login 2023-03-27 08:30:47 +02:00
Bubka
960d1ca5f9 Fix missing login throttling on WebAuthn login controller 2023-03-16 13:23:58 +01:00
Bubka
4d8180a8c1 Replace the useWebauthnAsDefault option by a client side form toggle 2023-03-15 14:44:51 +01:00
Bubka
f359a1ade3 Fix user preferences not being applied correctly after sign-in 2023-03-15 11:46:37 +01:00
Bubka
dc71d87f61 Make the RemoteUserProvider use a db persisted user & Update tests 2023-03-12 17:47:40 +01:00
Bubka
fd6941d300 Update the About view and its controller to split user & admin vars 2023-03-10 16:01:23 +01:00
Bubka
686cd0336d Fix the use of Settings instead of User preferences in WebAuthn view 2023-02-25 22:40:18 +01:00
Bubka
1788887f85 Fix twofaccounts count missing in groups listing & Active group saving 2023-02-25 22:24:44 +01:00
Bubka
e0f0afc505 Bind Groups to Users & Add relevant authorizations with policies 2023-02-23 16:59:16 +01:00
Bubka
5c83e17752 Let the WebAuthn form log in any user 2023-02-21 09:29:05 +01:00
Bubka
3c3d35bff5 Enable creation of multiple users 2023-02-20 17:09:59 +01:00
Bubka
46508fda75 Remove user check and redirection to registration on first landing 2023-02-19 23:00:39 +01:00
Bubka
5e5e50d053 Add Admin role & split settings between appSettings and userPreferences 2023-02-17 17:12:53 +01:00
Bubka
07608917fb Add ctrl+F keyboard shortcut to focus on Search 2023-02-08 16:18:57 +01:00
Bubka
d3bc99f328 Set OTPs formatting as a user option with multiple available formats 2023-02-08 16:18:57 +01:00
Bubka
6e66e954a0 Enhance FormToggle component 2023-02-08 15:56:00 +01:00
Bubka
eadebb41ac Add a Light theme and a theme detection/selection feature 2023-02-01 17:21:55 +01:00
Bubka
4b0f2186da Fix broken icons path when running 2fauth with a custom base url 2023-01-30 14:28:56 +01:00
Bubka
dcc6579365 Fix custom base URL support 2023-01-25 16:58:30 +01:00
Bubka
8f6bf85fa8 Add support for custom base URL - resolve #114 2023-01-20 17:36:15 +01:00
Bubka
17137b9885 Add support for 2FAuth json migration 2022-12-14 22:24:57 +01:00
Bubka
f661a0bc17 Change position of toolbar and buttons in Edit mode and add search 2022-12-14 22:24:57 +01:00
Bubka
88195a6afb Add export feature to the Edit mode - Complete #100 2022-12-14 22:24:57 +01:00
Bubka
b6e4cf50a4 Remove the ability to set a plain text secret 2022-12-13 09:05:56 +01:00
Bubka
017bbc6304 Replace darkghosthunter/larapass with laragear/webauthn 2022-11-25 15:20:36 +01:00
Bubka
67068b5ccd Fix #141 : Convert InputField value to string 2022-11-25 13:13:19 +01:00
Bubka
312ad46fd6 Fix #140 : Bad regex for Period field in advanced form 2022-11-25 09:21:20 +01:00
Bubka
6dae877e68 Disable SESSION_LIFETIME environment var which interferes with autolock 2022-10-19 13:12:49 +02:00
Bubka
7d4526a90c Update npm dependencies 2022-10-18 14:42:02 +02:00
Bubka
8cbdf9946b Remove is-focused class to prevent squared outline on Safari 2022-10-18 13:41:46 +02:00
Bubka
a56b0e7595 Fix items selection in Edit mode 2022-10-14 14:16:16 +02:00
Bubka
e502f010a2 Hide the I'm lucky legend when its button is hidden 2022-10-14 12:04:23 +02:00
Bubka
84d6149bb3 Fix email field not being disabled 2022-10-14 12:03:27 +02:00
Bubka
3fcc2b906b Fix some accessibility issues 2022-10-14 12:01:53 +02:00
Bubka
4511df5764 Refactor views to use a responsive width wrapper component 2022-10-12 17:38:38 +02:00
Bubka
8d3a97a701 Complete the release radar to notify new 2Fauth releases - Close #127 2022-10-12 11:14:17 +02:00
Bubka
e99c684018 Complete the Import view with Aegis and 2FAS migrations support 
Close #128
 2022-10-12 11:14:17 +02:00
Bubka
ed19b482cd Add support for 2FAS Auth export and fix some issues with migrators 2022-10-11 11:20:43 +02:00
Bubka
f867bd3fc5 Add a Clear button to empty the Import view when all is imported 2022-10-10 13:53:43 +02:00
Bubka
a47975c46e Fix validation issue with migration requests 2022-10-10 12:55:59 +02:00
Bubka
e79ae0a3ed Refactor and finalize the Import feature for G.Auth, Aegis & Plain Text 2022-10-07 19:01:09 +02:00
Bubka
1610cf3738 Complete keyboard navigation and focus style enhancement 2022-09-30 14:00:22 +02:00
Bubka
41387453d5 Refactor Import feature to support more sources of export 2022-09-30 13:58:31 +02:00
Bubka
062d809a28 Initiate the Release Radar 2022-09-21 21:50:41 +02:00
Bubka
4f3fa4ba75 Enhance accessibility with correct keyboard navigation and focus style 2022-09-21 21:46:06 +02:00
Bubka
fb7c0a9c6a Fix OAuth tab not highlighted 2022-09-21 17:23:40 +02:00
Bubka
fc077bf267 Use password field component for Reset password form 2022-09-19 16:53:24 +02:00
Bubka
95554a7034 Add notifications to give feedback after some actions 2022-09-19 12:19:34 +02:00
Bubka
ca910e159f Use a shorten phrase for webauthn device registration button 2022-09-18 17:11:03 +02:00
Bubka
b04a4cd5d2 Identify external links with a trailing icon 2022-09-18 17:07:46 +02:00
Bubka
d889947773 Add or enhance alt text for images 2022-09-18 17:04:37 +02:00
Bubka
eef020faae Add maxlength attribute to name and email fields 2022-09-18 16:27:42 +02:00
Bubka
74f4765d5b Use Button tag for action controls 2022-09-18 16:04:59 +02:00
Bubka
aae64e4f72 Fix upper case typo for initialEditMode parameter 2022-09-17 19:34:19 +02:00
Bubka
55fb8d56e1 Fix some titles color 2022-09-17 19:32:34 +02:00
Bubka
e19202e75e Use Button tag for action controls 2022-09-17 19:31:11 +02:00
Bubka
3d75ccc1fc Add user option to automatically copy OTP on display - Close #125 2022-09-15 11:22:22 +02:00
Bubka
b5c6f8f406 Fix #126 - Save updated HOTP counter after an OTP generation 2022-09-14 16:37:58 +02:00
Bubka
b44c6958e3 Enhance some fields design for more effective forms 2022-09-14 11:07:22 +02:00
Bubka
acdaa73e62 Add rules and live validation to Password Field component 2022-09-13 17:13:17 +02:00
Bubka
f2c90fb924 Add Vue PasswordField component with readability toggling 2022-09-10 18:04:14 +02:00
Bubka
4348b7067b Fix some accessibility issues 2022-09-10 17:59:52 +02:00
Bubka
61d177aecd Handle icon & qrcode upload failure gracefully 2022-09-02 14:28:57 +02:00
Bubka
85e34c6fb6 Fix #113 - Fix password reset route & Add a Continue button 2022-08-10 19:58:51 +02:00
Bubka
fbb85342c1 Fix #110 - Reset WebAuthn user options after last device revocation 2022-08-10 18:39:41 +02:00
Bubka
5800308e93 Fix #111 - Remove inappropriate notification during registration 2022-08-05 10:45:23 +02:00
Bubka
6b589dea6d Set id attribute in auth views 2022-08-04 21:31:04 +02:00
Bubka
90d4532883 Add Id attribute to vue components 2022-08-03 10:53:07 +02:00
Bubka
eee5767433 Add omitted translations 2022-08-01 10:34:59 +02:00
Bubka
35b5f26923 Apply OfficialIcons setting to the Edit form 2022-07-28 13:19:34 +02:00
Bubka
51719b01d0 Add official icons to the Import view 2022-07-28 13:17:22 +02:00
Bubka
f336a4f24a Add sort feature (and reorganize the header toolbar) - Closes #95 2022-07-28 13:16:05 +02:00
Bubka
7d4add0159 Fix #102 - Show form errors when submitting an invalid OTP preview 2022-07-22 11:32:55 +02:00
Bubka
5bab7d4912 Add a user option to disable Official icons fetching 2022-07-21 19:07:53 +02:00
Bubka
b0d263091d Fix some v-if syntax 2022-07-21 18:25:04 +02:00
Bubka
a066be8e38 Set (or reset) icon on OTP type toggling in the Create form 2022-07-21 18:08:17 +02:00
Bubka
2fa2cf8c99 Add an About view - Close #91 2022-07-21 15:48:23 +02:00
Bubka
6e1d27e08c Add Footer where it was missing 2022-07-21 15:46:55 +02:00
Bubka
3d7607cb53 Add the logo fetching feature to the Create/Edit forms 2022-07-20 13:41:28 +02:00
Bubka
459cc41a78 Adjust font sizing 2022-07-18 15:30:58 +02:00
Bubka
c30eae99fa Fix the Display mode option not saving at click 2022-07-18 15:30:45 +02:00
Bubka
27a091630c Add CSRF token refresh on Login view to prevent CSRF token mismatch 2022-07-14 17:07:28 +02:00
Bubka
f966e506d7 Push to login view after logout 2022-07-14 17:05:23 +02:00
Bubka
a2c4348364 Add an Auto Lock page to enforce logout et prevent CSRF mismatch error 
(completes #73 fix)
 2022-07-13 14:56:25 +02:00
Bubka
3bae868f8b Replace translation 2022-07-12 22:47:36 +02:00
Bubka
98bd9ddea5 Close #96 - Set unique page titles 2022-07-07 18:04:04 +02:00
Bubka
cb2de26e93 Add a reset command to set up a Testing app with data (like Demo) 2022-07-07 16:39:57 +02:00
Bubka
b4240bf1af Fix #97 - Hide secret's format selector when the field is locked 2022-07-07 14:11:00 +02:00
Bubka
2b5ee2f006 Complete Steam integration in forms 2022-07-07 11:53:10 +02:00
Bubka
3f06ca154f Remove OTP formatting for Steam password 2022-07-07 11:53:10 +02:00
Bubka
4a69bdb615 Add IsDisabled prop to FormField component 2022-07-07 11:53:10 +02:00
Bubka
23ddb3b054 Fix FormToggle event firing 2022-07-07 11:45:31 +02:00
Bubka
1d99c27675 Refactor OTP displayer to ease steamtotp support 2022-06-25 17:35:29 +02:00
Bubka
7dc04d6158 Remove obsolete phrase during registration 2022-06-24 09:24:35 +02:00
Bubka
2c5da9b85e Fix #90 - Blank page after deletion of all accounts 2022-06-20 22:40:35 +02:00
Bubka
b0a1556d5a Complete the G-Auth import feature 2022-06-20 17:55:40 +02:00
Bubka
b56ad6737b Add some options to the Start component 2022-06-20 17:55:40 +02:00
Bubka
e97f6cfbc6 Add Import view with basic import functionality 2022-06-20 17:55:40 +02:00
Bubka
75860686f7 Fix #85, #86 - Unwanted base32 operation on secret cause invalid otp 2022-05-31 23:20:56 +02:00
Bubka
abce20419b Fix #80 - Cannot access accounts with proxy header auth 2022-05-19 16:42:43 +02:00
Bubka
60787d9328 Make modal component non closable 2022-05-19 15:44:33 +02:00
Bubka
64d08deef1 Fetch groups only from authorized request 2022-05-19 14:05:34 +02:00
Bubka
0ed4086fb1 Lock the secret field in twoFaccounts Edit form 2022-05-17 14:07:11 +02:00
aronmal
94d23c7d06
Replace package 'thirty-two' with 'hi-base32' (#79) 2022-05-17 13:37:30 +02:00
Bubka
81a88a0b1a Fix oauth setting view returning an error when using an auth proxy 2022-05-16 23:51:33 +02:00
Bubka
6ef67fbc64 Fix #82 - Add a proxy logout URL and skip auto lock when it is not set 2022-05-16 23:51:33 +02:00
Bubka
070c6a2486 Fix #73 - CSRF token mismatch 2022-05-14 13:45:12 +02:00
Bubka
233c61d659 Clean logout mixin and session middleware 2022-05-13 16:44:01 +02:00
Bubka
2d38980890 Fix #72 - 2FA secret passed as plain text rejected by form validation 2022-05-13 13:49:14 +02:00
Bubka
5e0ea50e76 Restore Demo flags 2022-05-10 08:57:45 +02:00
Bubka
4fbf490039 Fix OTP copy 2022-05-09 18:39:31 +02:00
Bubka
63fafed6a9 Refine UI and translations 2022-04-15 16:20:34 +02:00
Bubka
9ccc4b41dc Fix icon not showing after upload in Edit form 2022-04-14 15:52:16 +02:00
Bubka
f6871b23c1 Disable webauthn options unless one device is registered 2022-04-06 09:48:07 +02:00
Bubka
5eee3de134 Refactor routes rejection using middlewares 2022-03-31 11:24:02 +02:00
Bubka
30331998d2 Fix missing version in vue footer 2022-03-31 11:24:02 +02:00
Bubka
21dbda5336 Enable the current group in the group switcher for better UX 2022-03-31 11:24:01 +02:00
Bubka
cdfda1591b Add possibility to delete the registered user and reset 2FAuth data 2022-03-31 11:24:01 +02:00
Bubka
9b96c5fd70 Code cleaning 2022-03-31 11:24:01 +02:00
Bubka
4fcfcc6797 Fix back-end paths called by Vue front-end 2022-03-31 11:24:01 +02:00
Bubka
d016507592 Replace radiusless sass definition by Bulma is-radiusless class 2022-03-31 11:24:01 +02:00
Bubka
725c012042 Fix and complete reverse-proxy support & Adjust front-end views 2022-03-31 11:24:01 +02:00
Bubka
911e18c9c4 Add reverse-proxy guard to support authentication proxy 2022-03-31 11:24:01 +02:00
Bubka
f3c6b9da5b Add WebAuthn authentication 2022-03-31 11:24:01 +02:00
Bubka
9f574feada Add support of the Accept_language header for UI localization 2022-03-31 11:24:01 +02:00
Bubka
1c32d2ff8a Update npm dependencies 2022-03-31 11:24:01 +02:00
Bubka
3edacf0824 Show actions instead of error when QR code is not a valid otp auth uri 2022-03-31 11:24:01 +02:00
Bubka
7efa86b232 Set up paths & namespace to match versioned routes 2022-03-31 11:24:01 +02:00
Bubka
0f17d93152 Force exit of Error view if no error is provided 2022-03-31 11:24:01 +02:00
Bubka
25bb4d95ea Add missing translation var 2022-03-31 11:24:01 +02:00
Bubka
55a47a75f4 Add OAuth Personal Access Token management 2022-03-31 11:24:01 +02:00
Bubka
d6306e5dd0 Use FreshApiToken instead of Personal access token for front-end auth 2022-03-31 11:24:01 +02:00
Bubka
db284c9343 Change color of settings page titles 2022-03-31 11:24:01 +02:00
Bubka
c7b43de835 Replace DbProtection class by an Encryption service 2022-03-31 11:24:01 +02:00
Bubka
568d1b131a Rename TokenDisplayer file to OtpDisplayer 2022-03-31 11:24:01 +02:00
Bubka
184237697b Update Vue front-end according to the new API definition and paths 2022-03-31 11:24:01 +02:00