Bubka
|
2123250a5e
|
Fix multiple issues detected by static analysis
|
2022-09-07 17:54:27 +02:00 |
|
Bubka
|
70c4c271cd
|
Fix some issues detected by static analysis
|
2022-08-26 16:06:59 +02:00 |
|
Bubka
|
fbb85342c1
|
Fix #110 - Reset WebAuthn user options after last device revocation
|
2022-08-10 18:39:41 +02:00 |
|
Bubka
|
3f279f358c
|
Add user logging after WebAuthn authentication - Fix #109
|
2022-08-02 10:57:16 +02:00 |
|
Bubka
|
6da24f7063
|
Reinstate user logging middleware for web routes behind auth - Fix #109
|
2022-08-02 09:27:35 +02:00 |
|
Bubka
|
f7ac1e96c3
|
Set SettingService behind a Facade
|
2022-07-30 17:51:02 +02:00 |
|
Bubka
|
e2bfbe5868
|
Bind TwoFAccountService to Service Container
|
2022-07-29 19:22:54 +02:00 |
|
Bubka
|
2fa2cf8c99
|
Add an About view - Close #91
|
2022-07-21 15:48:23 +02:00 |
|
Bubka
|
68ebeeb53a
|
Close #88 - Remove the "Already authenticated" error on login forms
|
2022-07-12 12:32:32 +02:00 |
|
Bubka
|
cb2de26e93
|
Add a reset command to set up a Testing app with data (like Demo)
|
2022-07-07 16:39:57 +02:00 |
|
Bubka
|
abce20419b
|
Fix #80 - Cannot access accounts with proxy header auth
|
2022-05-19 16:42:43 +02:00 |
|
Bubka
|
6ef67fbc64
|
Fix #82 - Add a proxy logout URL and skip auto lock when it is not set
|
2022-05-16 23:51:33 +02:00 |
|
Bubka
|
070c6a2486
|
Fix #73 - CSRF token mismatch
|
2022-05-14 13:45:12 +02:00 |
|
Bubka
|
233c61d659
|
Clean logout mixin and session middleware
|
2022-05-13 16:44:01 +02:00 |
|
Bubka
|
5e0ea50e76
|
Restore Demo flags
|
2022-05-10 08:57:45 +02:00 |
|
Bubka
|
7f2806e7d9
|
Fix test error on kick-out inactive user
|
2022-05-10 00:59:07 +02:00 |
|
Bubka
|
ebdca6bb42
|
Force logout of inactive users
|
2022-05-09 18:39:06 +02:00 |
|
Bubka
|
bf495f9019
|
Add trusted proxies as an env var
|
2022-04-14 11:34:40 +02:00 |
|
Bubka
|
ee22e24cf1
|
Fix and complete tests
|
2022-03-31 11:24:02 +02:00 |
|
Bubka
|
5eee3de134
|
Refactor routes rejection using middlewares
|
2022-03-31 11:24:02 +02:00 |
|
Bubka
|
a786efc6e8
|
Apply Demo restrictions on more routes
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
cdfda1591b
|
Add possibility to delete the registered user and reset 2FAuth data
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
dbb17b3f12
|
Remove useless routeMiddlewares
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
9b96c5fd70
|
Code cleaning
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
725c012042
|
Fix and complete reverse-proxy support & Adjust front-end views
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
911e18c9c4
|
Add reverse-proxy guard to support authentication proxy
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
f3c6b9da5b
|
Add WebAuthn authentication
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
9f574feada
|
Add support of the Accept_language header for UI localization
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
20856d62c6
|
Upgrade to Laravel 8
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
65da59db64
|
Drop appstract/laravel-options package
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
4ee3557cc1
|
Refactor login FormRequest and email case sensitive validation rule
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
eea7cec043
|
Fix inactivity middleware trying to logout stateless request
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
0383f07ad7
|
Add versioning to Laravel routes
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
9ca9fcc9ef
|
Reorganize files to prepare API versioning
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
affd4bdf8d
|
Enable CORS
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
8318f0f7a6
|
Disable inactivity tracking for user authenticated against bearer token
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
d6306e5dd0
|
Use FreshApiToken instead of Personal access token for front-end auth
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
5db549fe5e
|
Add logs
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
c7b43de835
|
Replace DbProtection class by an Encryption service
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
2cb4578109
|
Move options to config/2fauth
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
7bef68e731
|
Fix TwoFAccount update validation rules again
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
8eae21e4da
|
Fix TwoFAccount controller update method not returning an API resource
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
1d503ca313
|
Fix TwoFAccount update validation rules
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
d329b82a30
|
Fix comma-separated regex rule for ids
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
c27bef1819
|
Fix change password validation rule not checking for confirmation
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
b79570bcd9
|
Fix regex validation rule for TwoFAccounts batch delete
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
361ee38cf2
|
Change Settings attributes and routes
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
8dc5e7d6e9
|
Fix Group resource overriding TwoFAccounts count
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
a5514ba06b
|
Refactor Auth controllers : thicker, with Form requests & API resource
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
1a51cf967a
|
Remove useless overrides since json is the default response format
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
77cf15cf5e
|
Move isDemoApp to a new 2FAuth config file
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
3aef29717f
|
Clean unused namespaces
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
10fc144246
|
Refactor Options to a Setting service bound with the service container
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
afaa1a0a7a
|
Update phpdocs
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
037ebaa8ba
|
Add groups accounts fetching with dedicated route
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
6761b9e40b
|
Set controllers to use Group service & API resources
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
c7e273a580
|
Add Form Requests for Groups validation
|
2022-03-31 11:24:01 +02:00 |
|
Bubka
|
1091b95e49
|
Set mass DELETE according to REST (no request body) for twofaccounts
|
2022-03-31 11:24:00 +02:00 |
|
Bubka
|
5959b692de
|
Change order saving endpoint and remove position property
|
2022-03-31 11:24:00 +02:00 |
|
Bubka
|
59a63f5a2a
|
Move TwoFAccounts order saving to business service
|
2022-03-31 11:24:00 +02:00 |
|
Bubka
|
898ba1629e
|
Make some cleaning
|
2022-03-31 11:24:00 +02:00 |
|
Bubka
|
0d91fb5aa2
|
Set controllers to use TwoFAccount business service
|
2022-03-31 11:24:00 +02:00 |
|
Bubka
|
a2c67d1558
|
Add Form Requests for TwoFAccounts validation
|
2022-03-31 11:24:00 +02:00 |
|
Bubka
|
297b55f66f
|
Reformat some responses
|
2022-03-31 11:24:00 +02:00 |
|
Bubka
|
f3adb0b5dd
|
Move some TwoFAccount validations to Form Requests
|
2022-03-31 11:24:00 +02:00 |
|
Bubka
|
3036e534e7
|
Move QrCode controller logic to a business service
|
2022-03-31 11:24:00 +02:00 |
|
Bubka
|
9af39a469c
|
Force JSON responses everywhere
|
2022-03-31 11:24:00 +02:00 |
|
Bubka
|
cff545d936
|
Fix query to return the user even if userId > 0
|
2020-12-02 23:50:17 +01:00 |
|
Bubka
|
4d6ae849d8
|
Force lowercase on email to prevent capitalization issue with SQLite
|
2020-12-02 23:48:16 +01:00 |
|
Bubka
|
92be5976ff
|
Fix #17 : Capitalization of email address during login should not matter
|
2020-12-01 07:06:01 +01:00 |
|
Bubka
|
893f29849e
|
Refactor checkUser controller
|
2020-11-24 23:08:21 +01:00 |
|
Bubka
|
747eb98de3
|
Add punchlines to auth forms
|
2020-11-24 22:57:32 +01:00 |
|
Bubka
|
7df763073b
|
Push to Register form or hide it from Login form
|
2020-11-24 16:54:19 +01:00 |
|
Bubka
|
c895e95b87
|
Apply group filtering on client side to save an api call
|
2020-11-23 12:58:44 +01:00 |
|
Bubka
|
fa90fb0867
|
Remove useless assignation
|
2020-11-22 12:26:20 +01:00 |
|
Bubka
|
ed1ac10f59
|
Fix exception type declaration
|
2020-11-22 10:56:27 +01:00 |
|
Bubka
|
7a32998b4c
|
Return only essentials attributes when a token is requested to back-end
|
2020-11-21 21:46:31 +01:00 |
|
Bubka
|
b4ce39e9d5
|
Define accountCount internally instead of as a props
|
2020-11-21 21:34:45 +01:00 |
|
Bubka
|
019d380cb2
|
Refactor QRcode handling using the brand new Start view
|
2020-11-20 14:11:32 +01:00 |
|
Bubka
|
101a26b035
|
Prefill icon field with imageLink resource
|
2020-11-18 23:48:51 +01:00 |
|
Bubka
|
d9b48e8806
|
Revert unwanted previous change
|
2020-11-17 21:39:02 +01:00 |
|
Bubka
|
03981bc12b
|
Fix base32 Encoding usage
|
2020-11-17 21:27:55 +01:00 |
|
Bubka
|
efff5ecd1f
|
Fix missing attributes during store
|
2020-11-17 15:45:01 +01:00 |
|
Bubka
|
648c8f8006
|
Run populateFromUri() from uri setter instead of external call
|
2020-11-17 15:30:50 +01:00 |
|
Bubka
|
7bdd286fb2
|
Update Edit form to match with the new TwoFAccount model
|
2020-11-16 14:45:24 +01:00 |
|
Bubka
|
27dd64a965
|
Add route to get TwoFAccount with sensitive data
|
2020-11-16 14:10:54 +01:00 |
|
Bubka
|
02798a05f3
|
Move token generation from dedicated class to TwoFAccount model class
|
2020-11-14 18:55:10 +01:00 |
|
Bubka
|
acd1b2deca
|
Enforce Create form validation
|
2020-11-14 18:48:27 +01:00 |
|
Bubka
|
207ee2d3fb
|
Convert the standard Create form to an advanced form
|
2020-11-13 15:45:17 +01:00 |
|
Bubka
|
2f32551e99
|
Make URI visible in the QrCode controller response
|
2020-11-13 14:52:24 +01:00 |
|
Bubka
|
45a3f60fc6
|
Update QrCode controller to work with new TwoFAccount model
|
2020-11-12 00:18:38 +01:00 |
|
Bubka
|
8baa2156a8
|
Update OTP generation to work with new TwoFAccount model
|
2020-11-12 00:15:55 +01:00 |
|
Bubka
|
289a208847
|
Push to Error view when ProtectDB option fail
|
2020-11-06 17:49:28 +01:00 |
|
Bubka
|
544e916d60
|
Enhance OTP type detection
|
2020-11-05 22:50:49 +01:00 |
|
Bubka
|
d448ed9122
|
Code cleaning & refactoring
|
2020-11-05 22:47:59 +01:00 |
|
Bubka
|
6712613a20
|
Move DB protection logic to a dedicated class
|
2020-11-05 22:46:25 +01:00 |
|
Bubka
|
a8e5535d6b
|
Add Default group option in Settings
|
2020-11-02 22:41:40 +01:00 |
|
Bubka
|
bf31a9b599
|
Fix #9
|
2020-11-02 21:51:53 +01:00 |
|
Bubka
|
04af792b58
|
Set persisted ordering back
|
2020-11-02 15:32:09 +01:00 |
|
Bubka
|
7a3f9b526f
|
Add 'Show QR code' feature to the manage view
|
2020-11-02 13:39:43 +01:00 |
|