Bubka
|
bac39882c3
|
Fix various possible XSS attacks
|
2023-06-30 14:50:57 +02:00 |
|
Bubka
|
3d59b8b3c9
|
Fix possible sql injection in whereRaw query
|
2023-06-28 21:11:13 +02:00 |
|
Bubka
|
1352634b0f
|
Fallback Account to Issuer during Aegis import to prevent failure
|
2023-06-07 17:49:12 +02:00 |
|
Bubka
|
d2fc93d78f
|
Let the Import feature accept migrations with missing data
|
2023-06-07 17:47:14 +02:00 |
|
Bubka
|
d902e3ecae
|
Fix getOfficialIcons being ignored & Add relevant tests - Fix #194
|
2023-06-07 16:24:06 +02:00 |
|
Bubka
|
b8c810f885
|
Generate and Show all OTPs directly on the main view - Complete #153
|
2023-04-28 17:03:06 +02:00 |
|
Bubka
|
4f81b30fcd
|
Add admin setting to disable user registration - Complete #170
|
2023-04-28 16:52:04 +02:00 |
|
Bubka
|
5de9a2df27
|
Add artisan ':install' command
|
2023-04-28 15:47:52 +02:00 |
|
Bubka
|
a584c21670
|
Set user to orphan 2FAs/groups when behind auth proxy - Fix #176
|
2023-04-19 08:38:48 +02:00 |
|
Bubka
|
e4c9e87522
|
Fix icon fetched twice or forgotten during import
|
2023-03-29 17:43:41 +02:00 |
|
Bubka
|
3e012ae4e2
|
Update phpdocs
|
2023-03-26 23:04:06 +02:00 |
|
Bubka
|
ac6c715e9a
|
Apply Laravel Pint fixes
|
2023-03-26 17:13:32 +02:00 |
|
Bubka
|
ad8db3ae3b
|
Drop PHP 8.0 support & Fix unique validation rules
|
2023-03-25 12:26:01 +01:00 |
|
Bubka
|
fe5dce8d38
|
Log when user is set as admin during registration
|
2023-03-24 17:58:29 +01:00 |
|
Bubka
|
dae0a93ce8
|
Fix duplicate detection being made on all twofaccounts in db
|
2023-03-22 15:39:51 +01:00 |
|
Bubka
|
9c5f18bb46
|
Enhance test coverage
|
2023-03-18 17:33:43 +01:00 |
|
Bubka
|
b5f8322ea3
|
Remove unused seeders & Fix phpdocs
|
2023-03-17 17:17:04 +01:00 |
|
Bubka
|
2eaaf2bea8
|
Enhance logging during Release radar scan
|
2023-03-17 13:37:56 +01:00 |
|
Bubka
|
140cc70cef
|
Make Login & API throttling editable using the .env file - Close #163
|
2023-03-17 11:08:03 +01:00 |
|
Bubka
|
9913560787
|
Enhance logging during authentication (#163)
|
2023-03-16 15:58:00 +01:00 |
|
Bubka
|
960d1ca5f9
|
Fix missing login throttling on WebAuthn login controller
|
2023-03-16 13:23:58 +01:00 |
|
Bubka
|
82717077be
|
Remove invalid calls to the Settings facade
|
2023-03-15 16:26:32 +01:00 |
|
Bubka
|
4d8180a8c1
|
Replace the useWebauthnAsDefault option by a client side form toggle
|
2023-03-15 14:44:51 +01:00 |
|
Bubka
|
f359a1ade3
|
Fix user preferences not being applied correctly after sign-in
|
2023-03-15 11:46:37 +01:00 |
|
Bubka
|
5ced8cbf0e
|
Make the User Name unique
|
2023-03-13 14:53:42 +01:00 |
|
Bubka
|
dc71d87f61
|
Make the RemoteUserProvider use a db persisted user & Update tests
|
2023-03-12 17:47:40 +01:00 |
|
Bubka
|
dce3d16c37
|
Apply Laravel Pint fixes
|
2023-03-10 22:59:46 +01:00 |
|
Bubka
|
4753401827
|
Prevent last admin deletion & Update the Delete user feature
|
2023-03-10 16:02:56 +01:00 |
|
Bubka
|
fd6941d300
|
Update the About view and its controller to split user & admin vars
|
2023-03-10 16:01:23 +01:00 |
|
Bubka
|
6b6ad12bb7
|
Add an Admin scope to retrieve Admin users easily
|
2023-03-10 15:58:05 +01:00 |
|
Bubka
|
a2e0c52189
|
Add a Unique rule for user email validation in update/store requests
|
2023-03-10 15:57:34 +01:00 |
|
Bubka
|
0a8807d87a
|
Update & Complete API controllers tests and Unit tests
|
2023-03-08 17:49:52 +01:00 |
|
Bubka
|
823acde49d
|
Fix the TwoFAccount Export feature & add related tests
|
2023-03-08 09:41:57 +01:00 |
|
Bubka
|
af4400a74d
|
Update Authorizations, Logs and Tests for TwoFAccounts management
|
2023-03-08 09:41:18 +01:00 |
|
Bubka
|
b07150a14a
|
Refactor groups service and controller again
|
2023-03-07 17:45:40 +01:00 |
|
Bubka
|
79bc9020b2
|
Add ide-helper files & Update phpdocs
|
2023-03-02 15:24:57 +01:00 |
|
Bubka
|
4006deb1e0
|
Fix the user provider not honoring the useWebauthnOnly option
|
2023-03-02 15:07:46 +01:00 |
|
Bubka
|
47be24b60f
|
Fix calls to Setting instead of User preferences
|
2023-03-02 14:34:05 +01:00 |
|
Bubka
|
c5daeb5376
|
Refactor groups service and controller for better authorization handling
|
2023-03-02 14:32:53 +01:00 |
|
Bubka
|
9133436020
|
Update logs messages
|
2023-02-27 00:33:42 +01:00 |
|
Bubka
|
27717d05b8
|
Move Authorization checks to Service for Groups & Update tests
|
2023-02-27 00:32:49 +01:00 |
|
Bubka
|
fe9eb19825
|
Make the reset-testing command create multi-user test data
|
2023-02-25 22:29:55 +01:00 |
|
Bubka
|
1788887f85
|
Fix twofaccounts count missing in groups listing & Active group saving
|
2023-02-25 22:24:44 +01:00 |
|
Bubka
|
c8c1530b51
|
Apply Laravel Pint fixes
|
2023-02-25 22:23:38 +01:00 |
|
Bubka
|
e0f0afc505
|
Bind Groups to Users & Add relevant authorizations with policies
|
2023-02-23 16:59:16 +01:00 |
|
Bubka
|
3c77503fb1
|
Bind TwoFAccounts to Users & Add relevant authorizations with policies
|
2023-02-23 10:53:58 +01:00 |
|
Bubka
|
ed3a17a4fb
|
Add IDs to logs to identify the user concerned by the logged event
|
2023-02-21 14:09:36 +01:00 |
|
Bubka
|
5c83e17752
|
Let the WebAuthn form log in any user
|
2023-02-21 09:29:05 +01:00 |
|
Bubka
|
90f322f3b1
|
Set the first user to be an admin
|
2023-02-20 17:12:24 +01:00 |
|
Bubka
|
3c3d35bff5
|
Enable creation of multiple users
|
2023-02-20 17:09:59 +01:00 |
|
Bubka
|
46508fda75
|
Remove user check and redirection to registration on first landing
|
2023-02-19 23:00:39 +01:00 |
|
Bubka
|
373ffa14c8
|
Fix language definition in blade view
|
2023-02-19 22:59:20 +01:00 |
|
Bubka
|
5e5e50d053
|
Add Admin role & split settings between appSettings and userPreferences
|
2023-02-17 17:12:53 +01:00 |
|
Bubka
|
77eebbd35d
|
Use Laravel Cache to optimize access to user Settings
|
2023-02-15 08:41:35 +01:00 |
|
Bubka
|
ef7ccac88e
|
Change version comparison method in ReleaseRadarService
|
2023-02-08 16:18:57 +01:00 |
|
Bubka
|
7137f0e7a1
|
Add support of floats to SettingService
|
2023-02-08 16:18:57 +01:00 |
|
Bubka
|
eadebb41ac
|
Add a Light theme and a theme detection/selection feature
|
2023-02-01 17:21:55 +01:00 |
|
Bubka
|
dcc6579365
|
Fix custom base URL support
|
2023-01-25 16:58:30 +01:00 |
|
Bubka
|
05eafe51ac
|
Merge hotfixes for v3.4.2 into dev
|
2023-01-25 13:37:25 +01:00 |
|
Bubka
|
664bca3448
|
Fix #160 : Steam otpauth URIs are rejected by the Import feature
|
2023-01-25 13:12:03 +01:00 |
|
Bubka
|
8f6bf85fa8
|
Add support for custom base URL - resolve #114
|
2023-01-20 17:36:15 +01:00 |
|
Bubka
|
17137b9885
|
Add support for 2FAuth json migration
|
2022-12-14 22:24:57 +01:00 |
|
Bubka
|
88195a6afb
|
Add export feature to the Edit mode - Complete #100
|
2022-12-14 22:24:57 +01:00 |
|
Bubka
|
2d706e61b7
|
Apply Laravel Pint fixes
|
2022-12-13 12:07:29 +01:00 |
|
Bubka
|
5efcdddd88
|
Refactor the icons recording & Update tests
|
2022-12-13 11:26:35 +01:00 |
|
Bubka
|
b6e4cf50a4
|
Remove the ability to set a plain text secret
|
2022-12-13 09:05:56 +01:00 |
|
Bubka
|
6ab73cba3a
|
Change log level in migrators
|
2022-12-09 10:55:39 +01:00 |
|
Bubka
|
65c4bbc496
|
Apply Laravel Pint fixes
|
2022-12-09 10:55:11 +01:00 |
|
Bubka
|
05a39b6501
|
Update tests & minor fixes
|
2022-12-09 10:53:01 +01:00 |
|
Bubka
|
7ce7067380
|
Refactor LogoService resolution
|
2022-11-25 15:20:36 +01:00 |
|
Bubka
|
d6fd8e3c52
|
Apply Laravel Pint fixes
|
2022-11-25 15:20:36 +01:00 |
|
Bubka
|
d84dd6659e
|
Complete phpDocs type-hints
|
2022-11-25 15:20:36 +01:00 |
|
Bubka
|
de4422c795
|
Fix exception thrown when deleting TwoFAccount without icon
|
2022-11-25 15:20:36 +01:00 |
|
Bubka
|
b6a0e5055c
|
Fix multiple issues detected by static analysis
|
2022-11-25 15:20:36 +01:00 |
|
Bubka
|
017bbc6304
|
Replace darkghosthunter/larapass with laragear/webauthn
|
2022-11-25 15:20:36 +01:00 |
|
Bubka
|
0ac04a321d
|
Upgrade to Laravel 9
|
2022-11-25 15:18:19 +01:00 |
|
Bubka
|
1b8d4b78c5
|
Revert "Log auth exception to debug iOS logout issue"
This reverts commit 125daebcbc .
|
2022-10-19 09:13:42 +02:00 |
|
Bubka
|
e40e58c0bf
|
Log failed login
|
2022-10-18 18:51:45 +02:00 |
|
Bubka
|
125daebcbc
|
Log auth exception to debug iOS logout issue
|
2022-10-18 18:50:56 +02:00 |
|
Bubka
|
6276c665a9
|
Add logs for common Auth actions
|
2022-10-18 17:34:56 +02:00 |
|
Bubka
|
6a41c77144
|
Fix issues detected by static code analysis
|
2022-10-12 11:14:17 +02:00 |
|
Bubka
|
8d3a97a701
|
Complete the release radar to notify new 2Fauth releases - Close #127
|
2022-10-12 11:14:17 +02:00 |
|
Bubka
|
ed19b482cd
|
Add support for 2FAS Auth export and fix some issues with migrators
|
2022-10-11 11:20:43 +02:00 |
|
Bubka
|
5c35f815ba
|
Set Imports IDs from constants
|
2022-10-10 13:44:12 +02:00 |
|
Bubka
|
e5c21d1189
|
Force lowercase for the Algorithm attribute to fix markAsDuplicate()
|
2022-10-10 13:43:09 +02:00 |
|
Bubka
|
7c924126a3
|
Fix empty secret after running fillWithOtpParameters()
|
2022-10-10 13:02:36 +02:00 |
|
Bubka
|
a47975c46e
|
Fix validation issue with migration requests
|
2022-10-10 12:55:59 +02:00 |
|
Bubka
|
eb05d39210
|
Add icon import from Aegis migration data
|
2022-10-10 11:24:02 +02:00 |
|
Bubka
|
1af32ecbf4
|
Set icon filename generation as a helper function
|
2022-10-10 11:21:42 +02:00 |
|
Bubka
|
e79ae0a3ed
|
Refactor and finalize the Import feature for G.Auth, Aegis & Plain Text
|
2022-10-07 19:01:09 +02:00 |
|
Bubka
|
41387453d5
|
Refactor Import feature to support more sources of export
|
2022-09-30 13:58:31 +02:00 |
|
Bubka
|
062d809a28
|
Initiate the Release Radar
|
2022-09-21 21:50:41 +02:00 |
|
Bubka
|
b5c6f8f406
|
Fix #126 - Save updated HOTP counter after an OTP generation
|
2022-09-14 16:37:58 +02:00 |
|
Bubka
|
cc70fdacf6
|
Remove Auth env var from the About page for anonymous user
|
2022-09-07 18:07:37 +02:00 |
|
Bubka
|
03e2decddc
|
Use GuardHelpers trait & Enhance RemoteUserProvider
|
2022-09-07 17:58:34 +02:00 |
|
Bubka
|
3e391167c6
|
Make language detection more robust
|
2022-09-07 17:56:42 +02:00 |
|
Bubka
|
2123250a5e
|
Fix multiple issues detected by static analysis
|
2022-09-07 17:54:27 +02:00 |
|
Bubka
|
61d177aecd
|
Handle icon & qrcode upload failure gracefully
|
2022-09-02 14:28:57 +02:00 |
|
Bubka
|
70c4c271cd
|
Fix some issues detected by static analysis
|
2022-08-26 16:06:59 +02:00 |
|
Bubka
|
fbb85342c1
|
Fix #110 - Reset WebAuthn user options after last device revocation
|
2022-08-10 18:39:41 +02:00 |
|