Commit Graph

107 Commits

Author SHA1 Message Date
49716a8bf5 Register user security keys 2022-04-21 19:24:43 +02:00
1f0e6d05c8 Generate & return webauthn registration challenge 2022-04-20 21:06:53 +02:00
10982190e7 Add new test to validate TOTP codes generation 2022-04-20 18:06:04 +02:00
68cb630339 Automatically display first factor input form if there is only one 2022-04-20 12:06:56 +02:00
0e02b63d93 Refuse to deliver token if code_verifier is present without code challenge 2022-04-20 09:52:00 +02:00
1e401a0b10 Authentication using TOPT code is working 2022-04-20 09:35:57 +02:00
e8b3828f2c cargo clippy 2022-04-19 20:52:59 +02:00
94aeefe450 Replace type UserID with a structure 2022-04-19 19:40:36 +02:00
feb6db09b9 Fix typo 2022-04-19 19:33:16 +02:00
806a085c97 Improve redirect URI management 2022-04-19 19:30:24 +02:00
ce7118ff81 Display form to enter OTP code 2022-04-19 19:24:07 +02:00
c1677071fc Add a page to choose second factor 2022-04-19 18:27:21 +02:00
3add7a5d37 Rename SecondFactor => TwoFactor 2022-04-19 17:57:50 +02:00
9ff4392afb Replace Option<SecondFactor> with SecondFactor 2022-04-19 17:56:53 +02:00
5903ec2e8c Refactor login flow 2022-04-19 17:49:57 +02:00
78d70af510 Administrators can remove two factor authentication 2022-04-19 17:14:05 +02:00
630ebe2ddd Can remove created factors 2022-04-19 16:17:58 +02:00
deb00c572d Prevent crash from occuring 2022-04-19 16:01:16 +02:00
8cdb47a139 Rename route 2022-04-19 11:05:41 +02:00
b5a2f1abcb cargo clippy 2022-04-19 11:03:10 +02:00
65b5c812b1 Can register Authenticator app 2022-04-19 11:01:31 +02:00
18353f0639 Add form to authenticator page 2022-04-19 10:10:05 +02:00
38eddc1cf0 Generate QrCode to enroll Authenticator App 2022-04-19 09:57:08 +02:00
3023771334 Start to work on 2FA 2022-04-18 19:23:43 +02:00
5cf1f63674 Fix deprecation warnings 2022-04-18 17:13:41 +02:00
fad92c5930 Deprecate dangerous feature 2022-04-18 17:05:26 +02:00
bce601c550 Adapt OpenID discovery route to cluster configuration 2022-04-16 09:06:59 +02:00
489f938b71 Can specify environment variables in client configuration 2022-04-15 21:58:07 +02:00
937343c5f9 Add email to id_token 2022-04-15 20:34:07 +02:00
03a4bbb580 Cargo clippy 2022-04-15 20:18:36 +02:00
acabf438ed Reduce access tokens length 2022-04-15 20:16:02 +02:00
94c601119a Use JWT token for access token 2022-04-15 20:08:31 +02:00
69bb2816b9 Can disable code_challenge for specific clients 2022-04-15 19:26:17 +02:00
cac461e03d Can bypass code verifier for specific clients 2022-04-15 18:28:53 +02:00
1d21b30b68 Fix bad issuer 2022-04-15 17:30:43 +02:00
e0016b8305 More permissive redirect uris 2022-04-15 17:27:53 +02:00
819210ae86 Userinfo endpoint is working 2022-04-15 17:04:23 +02:00
b867016a71 Start to build userinfo endpoint 2022-04-14 18:39:18 +02:00
27cee8d3a0 Simplify code 2022-04-14 18:07:30 +02:00
45f125a331 Add code challenge support 2022-04-14 18:04:01 +02:00
0b64c88fc6 Normalize error responses 2022-04-14 17:13:07 +02:00
078a913f6a Can request refresh tokens 2022-04-14 17:02:47 +02:00
8a005c4185 Add missing claim 2022-04-13 19:14:37 +02:00
53a540139c Emit id_token 2022-04-13 19:07:58 +02:00
d69b44528e Add /openid/token route 2022-04-12 20:40:44 +02:00
88e34902c0 cargo clippy 2022-04-09 12:25:56 +02:00
5633aae029 Check if user is authorized to access an application before authenticating him 2022-04-09 12:24:03 +02:00
b10215ae9c Save open id session 2022-04-09 12:18:59 +02:00
c4bc559b4d Check OpenID request parameters 2022-04-09 11:30:23 +02:00
51e52e5ed7 cargo clippy 2022-04-08 18:54:22 +02:00