Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement Multi-Factor Authentication (MFA) #253

Open
SBriere opened this issue Jul 8, 2024 · 0 comments
Open

Implement Multi-Factor Authentication (MFA) #253

SBriere opened this issue Jul 8, 2024 · 0 comments
Assignees
@doumdi @SBriere
Labels
enhancement New feature or request

Comments

@SBriere
Copy link
Member

SBriere commented Jul 8, 2024
edited by doumdi
Loading

Describe the solution you'd like
Implement an MFA solution (One-Time password based / email based) for user logins.

Solution needs to be enabled by sites and/or projects and/or globally (especially for superadmins).
Users should not be able to disable 2FA once enabled (except for admins).
Admins need a way to reset code and display new QR to the user.
@SBriere SBriere added the enhancement New feature or request label Jul 8, 2024
doumdi added a commit that referenced this issue Sep 5, 2024
@doumdi
Refs #253 Updated requirements for pyotp
f15bba0
doumdi added a commit that referenced this issue Sep 5, 2024
@doumdi
Refs #253, Added 2fa columns to t_users
8f95e7a
doumdi added a commit that referenced this issue Sep 5, 2024
@doumdi
Refs #253, added new columns to ignored fields.
a55e535
doumdi added a commit that referenced this issue Sep 9, 2024
@doumdi
Refs #253, starting 2FA API.
8764879
doumdi added a commit that referenced this issue Sep 10, 2024
@doumdi
Refs #253, starting 2FA API. logout user when 2fa fails.
cfddb38
doumdi added a commit that referenced this issue Sep 16, 2024
@doumdi
Refs #253 Updated base implementation with exceptions.
7009500
doumdi added a commit that referenced this issue Sep 16, 2024
@doumdi
Refs #253 Updated base implementation with exceptions.
73eb372
doumdi added a commit that referenced this issue Sep 16, 2024
@doumdi
Refs #253 First tests with login views and 2fa.
af1cb32
doumdi added a commit that referenced this issue Sep 17, 2024
@doumdi
Refs #253 Working login flow with otp enabled.
c22049b
doumdi added a commit that referenced this issue Sep 17, 2024
@doumdi
Refs #253 Sending JSON output when logged in.
b6c8ba5
doumdi added a commit that referenced this issue Sep 19, 2024
@doumdi
Refs #253, testing Qt app with webchannel.
c0c9b6a
doumdi added a commit that referenced this issue Sep 19, 2024
@doumdi
Refs #253, working Qt with webchannel.
17ae671
doumdi added a commit that referenced this issue Sep 23, 2024
@doumdi
Refs #253, implementing change password, work in progress
5a3e837
doumdi added a commit that referenced this issue Sep 23, 2024
@doumdi
Refs #253, implementing change password, work in progress
125084a
doumdi added a commit that referenced this issue Sep 25, 2024
@doumdi
Refs #253, updating requirements.
1070e6c
doumdi added a commit that referenced this issue Sep 25, 2024
@doumdi
Refs #253, fixing tests for vscode.
cdb084f
SBriere added a commit that referenced this issue Sep 25, 2024
@SBriere
Refs #253. Updated login view visuals.
21e2d8d
doumdi added a commit that referenced this issue Sep 25, 2024
@doumdi
Refs #253, cleaning up login procedure using API, now able to log if …
feafedc 
…2fa is not enabled
doumdi added a commit that referenced this issue Sep 25, 2024
@doumdi
Refs #253, merging changes
ef3d23a
SBriere added a commit that referenced this issue Sep 26, 2024
@SBriere
Refs #253. Conditional use of QWebChannel in login (don't use if not …
af97f4c 
…defined)
doumdi added a commit that referenced this issue Sep 26, 2024
@doumdi
Refs #253, Setting up setup 2FA api.
15feecc
doumdi added a commit that referenced this issue Sep 26, 2024
@doumdi
Refs #253, Working Setup 2FA api.
ff7c01d
SBriere added a commit that referenced this issue Sep 26, 2024
@SBriere
Refs #253. Login view UI adjustments
bb35762
SBriere added a commit that referenced this issue Sep 26, 2024
@SBriere
Refs #253. Removed WWW-Authenticate from headers when using basic aut…
8829f7e 
…h to prevent browser pop-up
SBriere added a commit that referenced this issue Sep 27, 2024
@SBriere
Refs #253. Updated translations
e78bd53
doumdi added a commit that referenced this issue Sep 30, 2024
@doumdi
Refs #253, Maximum 5 2FA attempts in an hour.
72afb43
doumdi added a commit that referenced this issue Sep 30, 2024
@doumdi
Refs #253, Maximum 5 2FA attempts in an hour. Simplified and fixed lo…
2dc69a5 
…gic.
doumdi added a commit that referenced this issue Oct 1, 2024
@doumdi
Refs #253, enable 2FA for users in sites and related user groups.
d26c140
SBriere added a commit that referenced this issue Oct 1, 2024
@SBriere
Refs #253. Updated 2FA login screen, changed session length to 5 minu…
f433dae 
…tes, allowed OTP password with a 1 tick (30s) window.
SBriere added a commit that referenced this issue Oct 1, 2024
@SBriere
Refs #253. Updated translations.
a629124
doumdi added a commit that referenced this issue Oct 2, 2024
@doumdi
Refs #253, Avoid users to remove otp_enabled if secret is set.
2098597
SBriere added a commit that referenced this issue Oct 2, 2024
@SBriere
Refs #253. Updated user form
5dfa187
SBriere added a commit that referenced this issue Oct 3, 2024
@SBriere
Refs #253. Protected endpoints from HTTP basic auth when 2FA enabled
8fac52b
SBriere added a commit that referenced this issue Oct 3, 2024
@SBriere
Refs #253. Prevented User API endpoint access if user must change its…
ef27bcc 
… password
doumdi added a commit that referenced this issue Oct 3, 2024
@doumdi
Refs #253, More robust checks for 2fa update/insert on models.
3b36b6d
doumdi added a commit that referenced this issue Oct 3, 2024
@doumdi
Refs #253, Fix test_UserLogin2FA.
b89a28f
SBriere added a commit that referenced this issue Oct 3, 2024
@SBriere
Refs #253. Updated API endpoints documentation
d5b3048
doumdi added a commit that referenced this issue Oct 3, 2024
@doumdi
Refs #253, Added tests for UserLoginSetup2FA API.
fa528a7
doumdi added a commit that referenced this issue Oct 4, 2024
@doumdi
Refs #253, Added tests for 2FA configuration on login.
b6d4d61
doumdi added a commit that referenced this issue Oct 4, 2024
@doumdi
Refs #253, Reimplementation if after_update, after_insert events not …
317d66c 
…using relationships.
doumdi added a commit that referenced this issue Oct 4, 2024
@doumdi
Refs #253, Reimplementation if after_update, after_insert events not …
b7a8f8d 
…using relationships. To be validated.
SBriere added a commit that referenced this issue Oct 7, 2024
@SBriere
Refs #253. Completed password change view. Added password strength re…
b4f4faf 
…quirements on TeraUser.
doumdi added a commit that referenced this issue Oct 7, 2024
@doumdi
Refs #253, cleanup DBManager, fix tests.
a97650f
doumdi added a commit that referenced this issue Oct 7, 2024
@doumdi
Refs #253, force reset password for admin on first login.
27defa9
doumdi added a commit that referenced this issue Oct 7, 2024
@doumdi
Refs #253, fix tests.
f851261
SBriere added a commit that referenced this issue Oct 7, 2024
@SBriere
Refs #253. Updated login 2fa API paths in views. Work started on logi…
c531739 
…n - change password user API.
doumdi added a commit that referenced this issue Oct 7, 2024
@doumdi
Refs #253, cleanup test.
a64e99a
doumdi added a commit that referenced this issue Oct 7, 2024
@doumdi
Refs #253, added site tests and user tests with 2fa enabled.
3c46086
doumdi added a commit that referenced this issue Oct 7, 2024
@doumdi
Refs #253, Fix typos.
9dbde4a
SBriere added a commit that referenced this issue Oct 7, 2024
@SBriere
Refs #253. Added tests for User Login Change Password
a1840a1
doumdi added a commit that referenced this issue Oct 7, 2024
@doumdi
Refs #253, Add verification for superadmins.
a08f314
SBriere added a commit that referenced this issue Oct 7, 2024
@SBriere
Refs #253. Fixed backwards forms compatibility for OpenTeraPlus <= 1.2.x
398a7a6
doumdi added a commit that referenced this issue Oct 7, 2024
@doumdi
Refs #253, Add tests for 2fa with superadmins.
a07f2d1
doumdi added a commit that referenced this issue Oct 7, 2024
@doumdi
Refs #253, Code cleanup.
7bde014
doumdi added a commit that referenced this issue Oct 7, 2024
@doumdi
Refs #253, Code cleanup.
a42bb28
SBriere added a commit that referenced this issue Oct 7, 2024
@SBriere
Refs #253. Updated translations
5881536
@SBriere SBriere mentioned this issue Oct 10, 2024
Merged
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@doumdi doumdi

@SBriere SBriere

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@doumdi @SBriere