extern/2FAuth
1
0
Fork 0
mirror of https://github.com/Bubka/2FAuth.git synced 2024-11-25 09:44:04 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,782 Commits 4 Branches 47 Tags 25 MiB
2b35a9543a
Commit Graph

531 Commits

Author SHA1 Message Date
Bubka
f4edbcd044 Set missing parameters to null to prevent error at import - Fixes #277 2024-01-17 08:33:03 +01:00
Bubka
ecd905c36c Apply Pint fixes 2023-12-20 16:55:58 +01:00
Bubka
c5d173f45c Fix user registration via SSO with existing email and name 2023-12-14 15:39:14 +01:00
Bubka
36b4cd008a Fix access modifier to match the abstract class declaration 2023-12-14 11:34:14 +01:00
Bubka
e503826012 Add the ability to set a proxy for outgoing requests - Closes #252 2023-12-13 17:15:26 +01:00
Bubka
15c31c3341 Soften 2FAs migrations detection by ignoring schema version - Fixes #253 2023-12-11 14:10:51 +01:00
Bubka
9ff35195f0 Complete SSO (user model, error cases, tests, views) & Add github provider 2023-12-09 17:22:24 +01:00
Bubka
a407f4742e Merge branch 'feature/openid-support' of https://github.com/indykoning/2FAuth into indykoning-feature/openid-support 2023-12-06 09:27:20 +01:00
Bubka
4685e23fdb Set the new landing view for Vue 3 2023-12-05 14:41:57 +01:00
Bubka
a8eea1037a Allow letters with diacritic marks in Group name - Closes #241 2023-12-01 18:26:56 +01:00
Bubka
ee02fb5d92 Change HTTP code returned for routes rejected in reverse proxy setup 2023-11-23 12:56:09 +01:00
Bubka
9ae52ae78f Replace the draggable component by the vueuse one 2023-11-21 13:45:52 +01:00
Bubka
9d72525b38 Make the back-end returns the user email on login/register 2023-11-21 13:45:48 +01:00
Bubka
7efc20e74f Set up the Register view (without webauthn registration) 2023-11-21 13:45:48 +01:00
Bubka
0435cecd53 Adapt back-end to the new front-end auth management 2023-11-21 13:45:47 +01:00
Bubka
11d9da51d4 Set a dedicated blade landing view 2023-11-21 13:45:46 +01:00
indy koning
160f55fa6b Add support for an openid provider 2023-11-20 23:25:36 +01:00
Bubka
bd1d3bcf71 Add 2fauth:fix-orphan command 2023-09-20 15:43:50 +02:00
Bubka
d28b8e7e11 Update 2fauth:install command description 2023-09-20 15:25:19 +02:00
Bubka
78d52e2cdd Hide some 2fauth artisan commands 2023-09-20 14:55:28 +02:00
Bubka
08c54328ca Enhance output message of 2fauth:check-db-connection command 2023-09-20 14:54:26 +02:00
Bubka
7530a17e12 Set email length validation to max SQL string length - Fixes #214 2023-08-04 09:48:47 +02:00
Bubka
6c78be8d0b Fix checkForUpdate setting not being displayed - Closes #213 2023-08-01 17:26:56 +02:00
Bubka
44c04ebd25 Complete Laravel 10 upgrade 2023-08-01 16:33:55 +02:00
Bubka
1ad1b62caf Refactor Rules to Laravel 10 format 2023-08-01 15:10:58 +02:00
Bubka
fe5d807170 Upgrade to Laravel 10 & phpunit 10 2023-08-01 11:26:58 +02:00
Bubka
48bdf69d4e Add support for MS Corporate URIs - fixes #134, fixes #143, fixes #147 2023-07-06 17:10:19 +02:00
Bubka
a51f0bb2d9 Merge branch 'hotfix-sql-xss-injection' into dev 2023-06-30 17:01:04 +02:00
Bubka
9646afd2cc Change GroupStore request validation 2023-06-30 15:19:47 +02:00
Bubka
bac39882c3 Fix various possible XSS attacks 2023-06-30 14:50:57 +02:00
Bubka
3d59b8b3c9 Fix possible sql injection in whereRaw query 2023-06-28 21:11:13 +02:00
Bubka
1352634b0f Fallback Account to Issuer during Aegis import to prevent failure 2023-06-07 17:49:12 +02:00
Bubka
d2fc93d78f Let the Import feature accept migrations with missing data 2023-06-07 17:47:14 +02:00
Bubka
d902e3ecae Fix getOfficialIcons being ignored & Add relevant tests - Fix #194 2023-06-07 16:24:06 +02:00
Bubka
b8c810f885 Generate and Show all OTPs directly on the main view - Complete #153 2023-04-28 17:03:06 +02:00
Bubka
4f81b30fcd Add admin setting to disable user registration - Complete #170 2023-04-28 16:52:04 +02:00
Bubka
5de9a2df27 Add artisan ':install' command 2023-04-28 15:47:52 +02:00
Bubka
a584c21670 Set user to orphan 2FAs/groups when behind auth proxy - Fix #176 2023-04-19 08:38:48 +02:00
Bubka
e4c9e87522 Fix icon fetched twice or forgotten during import 2023-03-29 17:43:41 +02:00
Bubka
3e012ae4e2 Update phpdocs 2023-03-26 23:04:06 +02:00
Bubka
ac6c715e9a Apply Laravel Pint fixes 2023-03-26 17:13:32 +02:00
Bubka
ad8db3ae3b Drop PHP 8.0 support & Fix unique validation rules 2023-03-25 12:26:01 +01:00
Bubka
fe5dce8d38 Log when user is set as admin during registration 2023-03-24 17:58:29 +01:00
Bubka
dae0a93ce8 Fix duplicate detection being made on all twofaccounts in db 2023-03-22 15:39:51 +01:00
Bubka
9c5f18bb46 Enhance test coverage 2023-03-18 17:33:43 +01:00
Bubka
b5f8322ea3 Remove unused seeders & Fix phpdocs 2023-03-17 17:17:04 +01:00
Bubka
2eaaf2bea8 Enhance logging during Release radar scan 2023-03-17 13:37:56 +01:00
Bubka
140cc70cef Make Login & API throttling editable using the .env file - Close #163 2023-03-17 11:08:03 +01:00
Bubka
9913560787 Enhance logging during authentication (#163) 2023-03-16 15:58:00 +01:00
Bubka
960d1ca5f9 Fix missing login throttling on WebAuthn login controller 2023-03-16 13:23:58 +01:00
Bubka
82717077be Remove invalid calls to the Settings facade 2023-03-15 16:26:32 +01:00
Bubka
4d8180a8c1 Replace the useWebauthnAsDefault option by a client side form toggle 2023-03-15 14:44:51 +01:00
Bubka
f359a1ade3 Fix user preferences not being applied correctly after sign-in 2023-03-15 11:46:37 +01:00
Bubka
5ced8cbf0e Make the User Name unique 2023-03-13 14:53:42 +01:00
Bubka
dc71d87f61 Make the RemoteUserProvider use a db persisted user & Update tests 2023-03-12 17:47:40 +01:00
Bubka
dce3d16c37 Apply Laravel Pint fixes 2023-03-10 22:59:46 +01:00
Bubka
4753401827 Prevent last admin deletion & Update the Delete user feature 2023-03-10 16:02:56 +01:00
Bubka
fd6941d300 Update the About view and its controller to split user & admin vars 2023-03-10 16:01:23 +01:00
Bubka
6b6ad12bb7 Add an Admin scope to retrieve Admin users easily 2023-03-10 15:58:05 +01:00
Bubka
a2e0c52189 Add a Unique rule for user email validation in update/store requests 2023-03-10 15:57:34 +01:00
Bubka
0a8807d87a Update & Complete API controllers tests and Unit tests 2023-03-08 17:49:52 +01:00
Bubka
823acde49d Fix the TwoFAccount Export feature & add related tests 2023-03-08 09:41:57 +01:00
Bubka
af4400a74d Update Authorizations, Logs and Tests for TwoFAccounts management 2023-03-08 09:41:18 +01:00
Bubka
b07150a14a Refactor groups service and controller again 2023-03-07 17:45:40 +01:00
Bubka
79bc9020b2 Add ide-helper files & Update phpdocs 2023-03-02 15:24:57 +01:00
Bubka
4006deb1e0 Fix the user provider not honoring the useWebauthnOnly option 2023-03-02 15:07:46 +01:00
Bubka
47be24b60f Fix calls to Setting instead of User preferences 2023-03-02 14:34:05 +01:00
Bubka
c5daeb5376 Refactor groups service and controller for better authorization handling 2023-03-02 14:32:53 +01:00
Bubka
9133436020 Update logs messages 2023-02-27 00:33:42 +01:00
Bubka
27717d05b8 Move Authorization checks to Service for Groups & Update tests 2023-02-27 00:32:49 +01:00
Bubka
fe9eb19825 Make the reset-testing command create multi-user test data 2023-02-25 22:29:55 +01:00
Bubka
1788887f85 Fix twofaccounts count missing in groups listing & Active group saving 2023-02-25 22:24:44 +01:00
Bubka
c8c1530b51 Apply Laravel Pint fixes 2023-02-25 22:23:38 +01:00
Bubka
e0f0afc505 Bind Groups to Users & Add relevant authorizations with policies 2023-02-23 16:59:16 +01:00
Bubka
3c77503fb1 Bind TwoFAccounts to Users & Add relevant authorizations with policies 2023-02-23 10:53:58 +01:00
Bubka
ed3a17a4fb Add IDs to logs to identify the user concerned by the logged event 2023-02-21 14:09:36 +01:00
Bubka
5c83e17752 Let the WebAuthn form log in any user 2023-02-21 09:29:05 +01:00
Bubka
90f322f3b1 Set the first user to be an admin 2023-02-20 17:12:24 +01:00
Bubka
3c3d35bff5 Enable creation of multiple users 2023-02-20 17:09:59 +01:00
Bubka
46508fda75 Remove user check and redirection to registration on first landing 2023-02-19 23:00:39 +01:00
Bubka
373ffa14c8 Fix language definition in blade view 2023-02-19 22:59:20 +01:00
Bubka
5e5e50d053 Add Admin role & split settings between appSettings and userPreferences 2023-02-17 17:12:53 +01:00
Bubka
77eebbd35d Use Laravel Cache to optimize access to user Settings 2023-02-15 08:41:35 +01:00
Bubka
ef7ccac88e Change version comparison method in ReleaseRadarService 2023-02-08 16:18:57 +01:00
Bubka
7137f0e7a1 Add support of floats to SettingService 2023-02-08 16:18:57 +01:00
Bubka
eadebb41ac Add a Light theme and a theme detection/selection feature 2023-02-01 17:21:55 +01:00
Bubka
dcc6579365 Fix custom base URL support 2023-01-25 16:58:30 +01:00
Bubka
05eafe51ac Merge hotfixes for v3.4.2 into dev 2023-01-25 13:37:25 +01:00
Bubka
664bca3448 Fix #160 : Steam otpauth URIs are rejected by the Import feature 2023-01-25 13:12:03 +01:00
Bubka
8f6bf85fa8 Add support for custom base URL - resolve #114 2023-01-20 17:36:15 +01:00
Bubka
17137b9885 Add support for 2FAuth json migration 2022-12-14 22:24:57 +01:00
Bubka
88195a6afb Add export feature to the Edit mode - Complete #100 2022-12-14 22:24:57 +01:00
Bubka
2d706e61b7 Apply Laravel Pint fixes 2022-12-13 12:07:29 +01:00
Bubka
5efcdddd88 Refactor the icons recording & Update tests 2022-12-13 11:26:35 +01:00
Bubka
b6e4cf50a4 Remove the ability to set a plain text secret 2022-12-13 09:05:56 +01:00
Bubka
6ab73cba3a Change log level in migrators 2022-12-09 10:55:39 +01:00
Bubka
65c4bbc496 Apply Laravel Pint fixes 2022-12-09 10:55:11 +01:00
Bubka
05a39b6501 Update tests & minor fixes 2022-12-09 10:53:01 +01:00
Bubka
7ce7067380 Refactor LogoService resolution 2022-11-25 15:20:36 +01:00
Bubka
d6fd8e3c52 Apply Laravel Pint fixes 2022-11-25 15:20:36 +01:00
Bubka
d84dd6659e Complete phpDocs type-hints 2022-11-25 15:20:36 +01:00
Bubka
de4422c795 Fix exception thrown when deleting TwoFAccount without icon 2022-11-25 15:20:36 +01:00
Bubka
b6a0e5055c Fix multiple issues detected by static analysis 2022-11-25 15:20:36 +01:00
Bubka
017bbc6304 Replace darkghosthunter/larapass with laragear/webauthn 2022-11-25 15:20:36 +01:00
Bubka
0ac04a321d Upgrade to Laravel 9 2022-11-25 15:18:19 +01:00
Bubka
1b8d4b78c5 Revert "Log auth exception to debug iOS logout issue" 
This reverts commit 125daebcbc.
 2022-10-19 09:13:42 +02:00
Bubka
e40e58c0bf Log failed login 2022-10-18 18:51:45 +02:00
Bubka
125daebcbc Log auth exception to debug iOS logout issue 2022-10-18 18:50:56 +02:00
Bubka
6276c665a9 Add logs for common Auth actions 2022-10-18 17:34:56 +02:00
Bubka
6a41c77144 Fix issues detected by static code analysis 2022-10-12 11:14:17 +02:00
Bubka
8d3a97a701 Complete the release radar to notify new 2Fauth releases - Close #127 2022-10-12 11:14:17 +02:00
Bubka
ed19b482cd Add support for 2FAS Auth export and fix some issues with migrators 2022-10-11 11:20:43 +02:00
Bubka
5c35f815ba Set Imports IDs from constants 2022-10-10 13:44:12 +02:00
Bubka
e5c21d1189 Force lowercase for the Algorithm attribute to fix markAsDuplicate() 2022-10-10 13:43:09 +02:00
Bubka
7c924126a3 Fix empty secret after running fillWithOtpParameters() 2022-10-10 13:02:36 +02:00
Bubka
a47975c46e Fix validation issue with migration requests 2022-10-10 12:55:59 +02:00
Bubka
eb05d39210 Add icon import from Aegis migration data 2022-10-10 11:24:02 +02:00
Bubka
1af32ecbf4 Set icon filename generation as a helper function 2022-10-10 11:21:42 +02:00
Bubka
e79ae0a3ed Refactor and finalize the Import feature for G.Auth, Aegis & Plain Text 2022-10-07 19:01:09 +02:00
Bubka
41387453d5 Refactor Import feature to support more sources of export 2022-09-30 13:58:31 +02:00
Bubka
062d809a28 Initiate the Release Radar 2022-09-21 21:50:41 +02:00
Bubka
b5c6f8f406 Fix #126 - Save updated HOTP counter after an OTP generation 2022-09-14 16:37:58 +02:00
Bubka
cc70fdacf6 Remove Auth env var from the About page for anonymous user 2022-09-07 18:07:37 +02:00
Bubka
03e2decddc Use GuardHelpers trait & Enhance RemoteUserProvider 2022-09-07 17:58:34 +02:00
Bubka
3e391167c6 Make language detection more robust 2022-09-07 17:56:42 +02:00
Bubka
2123250a5e Fix multiple issues detected by static analysis 2022-09-07 17:54:27 +02:00
Bubka
61d177aecd Handle icon & qrcode upload failure gracefully 2022-09-02 14:28:57 +02:00
Bubka
70c4c271cd Fix some issues detected by static analysis 2022-08-26 16:06:59 +02:00
Bubka
fbb85342c1 Fix #110 - Reset WebAuthn user options after last device revocation 2022-08-10 18:39:41 +02:00
Bubka
3f279f358c Add user logging after WebAuthn authentication - Fix #109 2022-08-02 10:57:16 +02:00
Bubka
6da24f7063 Reinstate user logging middleware for web routes behind auth - Fix #109 2022-08-02 09:27:35 +02:00
Bubka
ce83d5f300 Fix #107 - Skip encryption when attribute is null 2022-08-01 08:24:49 +02:00
Bubka
ce842f3fc0 Fix Official icon not fetched on Preview 2022-07-30 21:23:54 +02:00
Bubka
f7ac1e96c3 Set SettingService behind a Facade 2022-07-30 17:51:02 +02:00
Bubka
be632bb489 Set TwoFAccountService as static behind a Facade 2022-07-30 11:38:20 +02:00
Bubka
fdc944be0e Set getLogo() as protected 2022-07-30 11:25:45 +02:00
Bubka
601d50e8a4 Set GroupService as static behind a Facade 2022-07-30 11:25:19 +02:00
Bubka
2fcaf46c9d Set QrCodeService as static behind a Facade 2022-07-30 10:46:02 +02:00
Bubka
e2bfbe5868 Bind TwoFAccountService to Service Container 2022-07-29 19:22:54 +02:00
Bubka
e49c358cda Bind SettingService & GroupService to the Service Container 2022-07-29 18:34:27 +02:00
Bubka
14609dec95 Bind QrCodeService to the Service Container 2022-07-29 16:42:52 +02:00
Bubka
9bf165895f Fix Artisan command calling a deprecated service method 2022-07-28 22:01:33 +02:00
Bubka
38d3744d39 Make the logo fetching optional 2022-07-26 22:35:04 +02:00
Bubka
8e397fb5ca Fix #103 - Remove replicated service's name in account's name during G-Auth import 2022-07-25 17:12:10 +02:00
Bubka
c25aaa3371 Fix & Complete tests 2022-07-22 16:27:16 +02:00
Bubka
5aec206f99 Fix parameter type mismatch 2022-07-22 16:25:53 +02:00
Bubka
5bab7d4912 Add a user option to disable Official icons fetching 2022-07-21 19:07:53 +02:00
Bubka
2fa2cf8c99 Add an About view - Close #91 2022-07-21 15:48:23 +02:00
Bubka
3d7607cb53 Add the logo fetching feature to the Create/Edit forms 2022-07-20 13:41:28 +02:00
Bubka
9b634dd55f Move method from model to the Logo service 2022-07-20 13:41:28 +02:00