Sibren Vasse
|
097ac771b0
|
Prevent OTP replay attacks by invalidating last token
|
2020-05-24 19:23:16 +02:00 |
|
Sibren Vasse
|
35bb1645a3
|
Allow user to disable mfa for browser for 30 days
|
2020-05-24 19:23:16 +02:00 |
|
Sibren Vasse
|
8c946d7026
|
Remove token when submitted value is incorrect
|
2020-05-24 19:23:16 +02:00 |
Son Nguyen Kim
|
eb60028b1f
|
Merge pull request #199 from developStorm/webauthn-multiple-keys
Support Multiple Keys for WebAuthn
|
2020-05-24 18:56:42 +02:00 |
Son NK
|
93d972df09
|
make sure to use lowercase for alias email
|
2020-05-20 18:12:14 +02:00 |
devStorm
|
7bd97e13b0
|
fido_model -> fidos
|
2020-05-18 13:55:38 -07:00 |
|
devStorm
|
ea914e0378
|
Rename FIDO->Fido
|
2020-05-18 13:54:05 -07:00 |
|
devStorm
|
35f0c094fe
|
black
|
2020-05-18 01:04:45 -07:00 |
|
devStorm
|
419aa95f1f
|
more verify
|
2020-05-18 01:02:58 -07:00 |
|
devStorm
|
ec91d280bb
|
Verify
|
2020-05-18 00:08:06 -07:00 |
|
Son NK
|
87d52216cb
|
reformat
|
2020-05-17 10:35:11 +02:00 |
|
Son NK
|
20e66edbaa
|
fix redirection to next page
|
2020-05-17 10:28:00 +02:00 |
|
Son NK
|
2e208ed505
|
display recovery code options on mfa and fido page
|
2020-05-17 10:27:20 +02:00 |
|
Son NK
|
da4e0bf384
|
create /auth/recovery page
|
2020-05-17 10:17:52 +02:00 |
|
Son NK
|
7ed77a66b2
|
format
|
2020-05-15 23:18:42 +02:00 |
|
Son NK
|
2978bfb281
|
Fix user cannot change personal email back and better naming.
Happens when user
- changes their personal email
- wants to change back: they can't as this email is already used as mailbox
|
2020-05-15 23:18:30 +02:00 |
|
devStorm
|
a9967c9a4d
|
Auto activate WebAuthn authentication
|
2020-05-11 19:17:51 -07:00 |
|
Son NK
|
cde8452e5b
|
Fix Google oauth_state KeyError
|
2020-05-10 11:34:32 +02:00 |
|
Son NK
|
b95b758692
|
Optimize imports
|
2020-05-09 20:49:38 +02:00 |
|
devStorm
|
d236f906ad
|
🐛 WebAuthn bug fixes
- User may not have name
- user_verification should be discouraged to work on iOS
|
2020-05-08 14:21:38 -07:00 |
|
Son NK
|
ccb30a2def
|
disable sign-up via social login
|
2020-05-07 22:01:14 +02:00 |
|
Son NK
|
18d62a81d1
|
add User.can_use_fido
|
2020-05-07 17:56:25 +02:00 |
|
Son NK
|
84c529c867
|
optimize import
|
2020-05-07 17:49:29 +02:00 |
|
Son NK
|
fe1262686e
|
black format
|
2020-05-07 17:48:44 +02:00 |
|
devStorm
|
2290a90b09
|
Use try-else 9b8340f3e0 (r421465450)
|
2020-05-07 05:41:34 -07:00 |
|
devStorm
|
b0c39635a5
|
Remove credential_id variable
|
2020-05-07 05:37:03 -07:00 |
|
devStorm
|
e4895b52a0
|
fix SITE_URL
|
2020-05-07 05:34:17 -07:00 |
|
devStorm
|
f7e3320242
|
model - fido_enabled
|
2020-05-07 05:32:52 -07:00 |
|
devStorm
|
9b8340f3e0
|
Black formatted
|
2020-05-07 02:53:28 -07:00 |
|
devStorm
|
0052dad13e
|
Do not show full error msg to user
|
2020-05-07 02:48:56 -07:00 |
|
devStorm
|
282cbe25a3
|
Calculate RP_ID in config
|
2020-05-07 02:39:30 -07:00 |
|
devStorm
|
3ab3f819b7
|
Make RP_ID a constant
|
2020-05-07 02:33:24 -07:00 |
|
devStorm
|
b8b1313db9
|
typo 'infomation'
|
2020-05-07 02:31:42 -07:00 |
|
devStorm
|
ced02a8f20
|
remove debug code
|
2020-05-05 14:26:26 -07:00 |
|
devStorm
|
fc001cfc24
|
fix exception handling
|
2020-05-05 14:13:01 -07:00 |
|
devStorm
|
9da6054ec0
|
Allow to use either OTP or FIDO for 2FA
|
2020-05-05 05:16:33 -07:00 |
|
devStorm
|
650d6e35f0
|
FIDO login middleware
|
2020-05-05 05:03:29 -07:00 |
|
devStorm
|
286b1143ca
|
Store sign count
|
2020-05-05 03:16:52 -07:00 |
|
Son NK
|
96366ddcfa
|
Deprecate social login, prettify some pages
|
2020-04-27 23:08:21 +02:00 |
|
Son NK
|
a069fe7b6a
|
do not return error when user doesn't exist on forgot_password
|
2020-04-27 22:57:55 +02:00 |
|
Son NK
|
26a094469b
|
remove logout.html
|
2020-04-27 22:56:44 +02:00 |
Son NK
|
ca6350cc27
|
optimize import in all files
|
2020-04-25 13:49:39 +02:00 |
|
Son NK
|
6a67f7946f
|
fix facebook might not return email
|
2020-04-24 09:17:21 +02:00 |
|
Son NK
|
3c9e6fc991
|
make sure to strip and lower email in input
|
2020-04-15 21:12:45 +02:00 |
|
Son NK
|
8fc88b8253
|
Set referral when creating User
|
2020-04-09 22:22:26 +02:00 |
Son NK
|
b8093aefa3
|
Handle invalid email when user signs up
|
2020-03-21 11:11:52 +01:00 |
|
Son NK
|
abd2278c24
|
make sure to set File.user_id
|
2020-03-20 09:52:00 +01:00 |
|
Son NK
|
cb3ea63066
|
show error if no such email exists from Github
|
2020-03-05 16:46:02 +01:00 |
|
Son NK
|
90dc05725a
|
use github email that is "verified" and "primary"
|
2020-03-05 16:45:49 +01:00 |
|
Son NK
|
ca70d26285
|
black format
|
2020-03-05 11:00:58 +01:00 |
|
Son NK
|
a0372a15de
|
fix github email can contain uppercase char
|
2020-03-05 10:58:58 +01:00 |
|
Son NK
|
16718806ba
|
fix
|
2020-02-27 22:57:37 +07:00 |
|
Son NK
|
87b6df9408
|
save which social network user uses in SocialAuth table
|
2020-02-27 22:16:12 +07:00 |
|
Son NK
|
5f9ad01849
|
take into account the case an email is primary but not verified on github
|
2020-02-19 23:56:07 +07:00 |
|
Son NK
|
821372fdfd
|
add email_already_used() and use it when creating user
|
2020-02-10 23:16:30 +07:00 |
|
Son NK
|
01abc48f62
|
add trial information into welcome email
|
2020-01-30 13:54:33 +07:00 |
|
Son NK
|
e810c99970
|
fix formatting
|
2020-01-30 00:18:31 +07:00 |
|
Son NK
|
48edb85fc9
|
Fix email case on register
|
2020-01-30 00:16:04 +07:00 |
|
Son NK
|
f76bdd8fe6
|
set DISABLE_REGISTRATION param to disable registration
|
2020-01-28 11:50:25 +07:00 |
|
Son NK
|
99ffd6149d
|
use can_be_used_as_personal_email when user registers or change emails
|
2020-01-26 19:51:43 +07:00 |
|
Son NK
|
bdf75951f1
|
support ALIAS_DOMAINS
- use verify_prefix_suffix() in /api/alias/custom/new
-
|
2020-01-22 10:24:17 +01:00 |
|
Son NK
|
356b95ef80
|
fix formatting
|
2020-01-11 22:28:06 +01:00 |
|
Son NK
|
8c9512e61e
|
do not ask for user name when register
|
2020-01-11 22:26:59 +01:00 |
|
Son NK
|
d6aa6e7b94
|
Make sure to user lowercase for user email
|
2020-01-04 10:24:01 +01:00 |
|
Son NK
|
837ab8258e
|
redirect to login page instead
|
2020-01-03 23:50:34 +01:00 |
|
Son NK
|
4208ba379f
|
Fix user could go to MFA page directly
|
2020-01-03 23:42:35 +01:00 |
|
Son NK
|
632484ee5c
|
Update wording: remove "successfully"
|
2019-12-30 17:43:38 +01:00 |
|
Son NK
|
ca6c32f951
|
Fix formatting
|
2019-12-30 15:56:47 +01:00 |
Tung Nguyen
|
1289b08636
|
Merge remote-tracking branch 'nguyenkims/master'
|
2019-12-30 12:33:32 +00:00 |
|
Son NK
|
de0368c20f
|
remove redundant code
|
2019-12-27 16:53:07 +00:00 |
|
Son NK
|
5b01071bec
|
Redirect user to MFA page if they enable MFA
|
2019-12-27 16:53:07 +00:00 |
|
Son NK
|
c52f2d1603
|
Create auth/mfa page used by user who has enabled MFA
|
2019-12-27 16:53:07 +00:00 |
|
Tung Nguyen
|
4f751e5cd2
|
fix typos and improve messages showing at the end users
|
2019-12-26 13:00:17 +00:00 |
|
Son NK
|
f80adae625
|
fix login error message
|
2019-12-23 19:00:31 +00:00 |
|
Son NK
|
41fe528441
|
use flash to display error in login
|
2019-12-22 15:59:00 +00:00 |
|
Son NK
|
4147e19530
|
fix facebook error when user choose to not share email
|
2019-12-19 22:38:20 +02:00 |
|
Son NK
|
ec62fad3a0
|
remove notify_admin, replace by general stats
|
2019-12-15 18:55:18 +02:00 |
|
Son NK
|
d061ad7d56
|
make sure user cannot register with SL email
|
2019-12-15 18:55:15 +02:00 |
|
Son NK
|
2dd25cc72d
|
create change_email view
|
2019-12-15 18:55:15 +02:00 |
|
Son NK
|
711ae83751
|
show message when logged in user tries goes to register
|
2019-12-15 18:55:15 +02:00 |
|
Son NK
|
c5b65c108b
|
fix name can be absent in github data
https://sentry.io/organizations/son/issues/1201398007/?project=1478143&query=is%3Aunresolved
|
2019-12-15 18:55:14 +02:00 |
|
Son NK
|
276e37a9ab
|
send welcome email when user creates new account
|
2019-12-15 18:55:14 +02:00 |
|
Son NK
|
6f93f419c2
|
send by postfix only
|
2019-12-15 18:55:14 +02:00 |
|
Son NK
|
f366e1c383
|
add send_by_postfix, to distinct with send_by_sendgrid
|
2019-12-15 18:55:14 +02:00 |
|
Son NK
|
62daf5eadb
|
improve notify_admin email
|
2019-12-15 18:55:13 +02:00 |
|
Son NK
|
3e0bc27bad
|
better notify_admin message
|
2019-12-15 18:55:12 +02:00 |
|
Son NK
|
2693ba5838
|
make sure expiration is handled for ActivationCode and ResetPasswordCode
|
2019-12-15 18:55:12 +02:00 |
Son NK
|
0817e45abe
|
override User.create to set password, create GenEmail, set trial period
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
631e251d8c
|
handle the case user clicks on cancel
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
886108c3a0
|
enable facebook login
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
bdc22f3c68
|
fix user getting redirected at each google login
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
7ea4c157a1
|
workaround as Google does not allow to append param to redirect_url
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
caf610446c
|
handle next with google login
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
cc6ce6618d
|
refactor: rename
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
aab2244881
|
handle "next" for "sign up with github" too
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
f21f16e3f2
|
redirect user to next after login with github/google
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
43536734a0
|
add login with google
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
17a4679b90
|
fix activation code
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
4cdb803157
|
fix redirect_uri
|
2019-12-15 18:55:09 +02:00 |
|
Son NK
|
6d8d61495e
|
set explicitly the redirect_uri
|
2019-12-15 18:55:09 +02:00 |