Commit Graph

102 Commits

Author SHA1 Message Date
91ef6c25d5 Can define additional claims on per-client basis
All checks were successful
continuous-integration/drone/push Build is passing
2024-03-31 18:37:08 +02:00
0a5649fcb9 Add implicit authentication flow (#255)
All checks were successful
continuous-integration/drone/push Build is passing
Reviewed-on: #255
Co-authored-by: Pierre HUBERT <pierre.git@communiquons.org>
Co-committed-by: Pierre HUBERT <pierre.git@communiquons.org>
2024-03-28 21:13:25 +00:00
cf0e7e1e68 Can enforce 2FA for specific clients 2024-03-27 20:59:29 +01:00
9a79ef701b Need to perform 2FA before modifying factors 2024-03-27 19:26:07 +01:00
8d739c6f72 Fix issue with code
All checks were successful
continuous-integration/drone/push Build is passing
2024-03-26 21:59:43 +01:00
771cbc0888 Fix issue for unauthenticated users
All checks were successful
continuous-integration/drone/push Build is passing
2024-03-26 21:50:37 +01:00
dfb277d636 Can force 2FA authent 2024-03-26 21:07:29 +01:00
5644e40763 Record successful 2FA authentication in session cookie
All checks were successful
continuous-integration/drone/push Build is passing
2024-03-25 18:04:54 +01:00
b704e9868b Accept future OTP code
All checks were successful
continuous-integration/drone/push Build is passing
2024-03-25 17:18:08 +01:00
e71fad8546 Check login before logging it 2024-02-19 19:11:13 +01:00
6cc9f4c54c Refactor dependencies to reduce code base size (#111)
All checks were successful
continuous-integration/drone/push Build is passing
Use crates to reduce code base size :

* `actix-remote-ip` to safely determine user IP location
* `light-openid` for the OpenID primitives & as client to handle federation

Reviewed-on: #111
2023-04-29 11:11:24 +00:00
e351c333fc Update bincode to v2.0.0-rc3 (#109)
All checks were successful
continuous-integration/drone/push Build is passing
Prepare for the next major update of bincode

Reviewed-on: #109
2023-04-28 08:29:04 +00:00
5e53da0afa Remove empty module
All checks were successful
continuous-integration/drone/push Build is passing
2023-04-27 18:35:11 +02:00
9b18b787a9 Add authentication from upstream providers (#107)
All checks were successful
continuous-integration/drone/push Build is passing
Let BasicOIDC delegate authentication to upstream providers (Google, GitHub, GitLab, Keycloak...)

Reviewed-on: #107
2023-04-27 10:10:28 +00:00
6d2e52d632 Add default clients (#105)
All checks were successful
continuous-integration/drone/push Build is passing
* Add the possibility to create client enabled by default when creating new accounts
* Can mark clients are granted for all users, regardless of users accounts grants

Reviewed-on: #105
2023-04-15 10:19:15 +00:00
f2e4826b14 Update to code to Rust 1.67
All checks were successful
continuous-integration/drone/push Build is passing
2023-02-02 10:22:15 +01:00
e35f890241 Update crate base64
All checks were successful
continuous-integration/drone/push Build is passing
2023-01-23 16:38:21 +01:00
85e165bd29 Refactor users management (#8)
* Update users backend interface signatures
2022-12-03 12:28:11 +01:00
fc6ab00e30 Refactor users management (#7)
All checks were successful
continuous-integration/drone/push Build is passing
* Improve general settings management by admin
2022-11-26 16:06:16 +01:00
a2d731bfff Refactor users management (#6)
All checks were successful
continuous-integration/drone/push Build is passing
* Improve second factor removal by admin
2022-11-26 15:08:36 +01:00
f5ac7bf278 Refactor users management (#6)
* Use asynchronous interface to set authorized clients list
2022-11-26 14:51:08 +01:00
e739b10065 Refactor users management (#4)
All checks were successful
continuous-integration/drone/push Build is passing
* Improve deletion of 2FA factors
2022-11-19 18:35:41 +01:00
ec2f271ed4 Refactor users management (#3)
All checks were successful
continuous-integration/drone/push Build is passing
* Improve creation of 2FA factors
2022-11-19 18:27:08 +01:00
fcf3ec7036 Refactor users management (#2)
All checks were successful
continuous-integration/drone/push Build is passing
* Create UserBackend trait
2022-11-19 18:18:46 +01:00
65d334b947 Refactor users management
All checks were successful
continuous-integration/drone/push Build is passing
* Shard `src/data/user.rs` into two different files
  * One for user data structure (same file)
  * One for user manipulation (new file: `user_file_entity.rs`)
* Isolate password hashing and verification
2022-11-19 17:52:35 +01:00
d06c0352fc Log all user actions on stdout
All checks were successful
continuous-integration/drone/push Build is passing
2022-11-19 13:38:24 +01:00
bfe65b0216 Add IP location service
All checks were successful
continuous-integration/drone/push Build is passing
2022-11-12 17:02:34 +01:00
cc4a8a962b User can delete his own 2FA login history
All checks were successful
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2022-11-12 11:51:24 +01:00
1fa36c0aff Automatically remove outdated 2FA successful entries 2022-11-12 11:27:19 +01:00
7e1cbb184d Can clear 2FA login history from edit_user page 2022-11-12 11:16:55 +01:00
7a3eaa944e Start to create 2FA exemption after successful 2FA login
Some checks failed
continuous-integration/drone/push Build is failing
2022-11-12 10:24:00 +01:00
af383720b7 Merge factors type for authentication 2022-11-11 12:26:02 +01:00
58b6bd7568 Add RP name in webauthn 2022-08-25 08:03:49 +02:00
34b2e609bd cargo clippy
All checks were successful
continuous-integration/drone/push Build is passing
2022-08-24 13:38:12 +02:00
4450a21225 Update webauthn-rs dependency 2022-08-24 13:33:40 +02:00
68e0aa2565 Update aes dependency
All checks were successful
continuous-integration/drone/push Build is passing
2022-08-20 09:30:36 +02:00
24240ca4fd Refactor code 2022-07-22 14:28:44 +02:00
07542abf8b Update actix_identity
All checks were successful
continuous-integration/drone/push Build is passing
2022-07-22 12:21:38 +02:00
933c8ff024 Add expiration to webauthn challenges 2022-04-23 20:22:32 +02:00
9e345895ff Managed to authenticate user using Webauthn 2022-04-23 20:17:49 +02:00
1d69ea536f Get auth challenge 2022-04-23 18:56:14 +02:00
0f2fe87b5d cargo clippy 2022-04-21 19:26:50 +02:00
49716a8bf5 Register user security keys 2022-04-21 19:24:43 +02:00
1f0e6d05c8 Generate & return webauthn registration challenge 2022-04-20 21:06:53 +02:00
10982190e7 Add new test to validate TOTP codes generation 2022-04-20 18:06:04 +02:00
1e401a0b10 Authentication using TOPT code is working 2022-04-20 09:35:57 +02:00
e8b3828f2c cargo clippy 2022-04-19 20:52:59 +02:00
94aeefe450 Replace type UserID with a structure 2022-04-19 19:40:36 +02:00
feb6db09b9 Fix typo 2022-04-19 19:33:16 +02:00
806a085c97 Improve redirect URI management 2022-04-19 19:30:24 +02:00