Commit Graph

75 Commits

Author SHA1 Message Date
234e77d08a Block pages indexing 2022-04-23 20:41:31 +02:00
48112dfed7 Make usage of FatalErrorPage more convenient 2022-04-23 20:31:09 +02:00
9e345895ff Managed to authenticate user using Webauthn 2022-04-23 20:17:49 +02:00
1d69ea536f Get auth challenge 2022-04-23 18:56:14 +02:00
49716a8bf5 Register user security keys 2022-04-21 19:24:43 +02:00
1f0e6d05c8 Generate & return webauthn registration challenge 2022-04-20 21:06:53 +02:00
68cb630339 Automatically display first factor input form if there is only one 2022-04-20 12:06:56 +02:00
0e02b63d93 Refuse to deliver token if code_verifier is present without code challenge 2022-04-20 09:52:00 +02:00
1e401a0b10 Authentication using TOPT code is working 2022-04-20 09:35:57 +02:00
94aeefe450 Replace type UserID with a structure 2022-04-19 19:40:36 +02:00
806a085c97 Improve redirect URI management 2022-04-19 19:30:24 +02:00
ce7118ff81 Display form to enter OTP code 2022-04-19 19:24:07 +02:00
c1677071fc Add a page to choose second factor 2022-04-19 18:27:21 +02:00
3add7a5d37 Rename SecondFactor => TwoFactor 2022-04-19 17:57:50 +02:00
9ff4392afb Replace Option<SecondFactor> with SecondFactor 2022-04-19 17:56:53 +02:00
5903ec2e8c Refactor login flow 2022-04-19 17:49:57 +02:00
78d70af510 Administrators can remove two factor authentication 2022-04-19 17:14:05 +02:00
630ebe2ddd Can remove created factors 2022-04-19 16:17:58 +02:00
8cdb47a139 Rename route 2022-04-19 11:05:41 +02:00
65b5c812b1 Can register Authenticator app 2022-04-19 11:01:31 +02:00
18353f0639 Add form to authenticator page 2022-04-19 10:10:05 +02:00
38eddc1cf0 Generate QrCode to enroll Authenticator App 2022-04-19 09:57:08 +02:00
3023771334 Start to work on 2FA 2022-04-18 19:23:43 +02:00
5cf1f63674 Fix deprecation warnings 2022-04-18 17:13:41 +02:00
fad92c5930 Deprecate dangerous feature 2022-04-18 17:05:26 +02:00
bce601c550 Adapt OpenID discovery route to cluster configuration 2022-04-16 09:06:59 +02:00
937343c5f9 Add email to id_token 2022-04-15 20:34:07 +02:00
03a4bbb580 Cargo clippy 2022-04-15 20:18:36 +02:00
94c601119a Use JWT token for access token 2022-04-15 20:08:31 +02:00
69bb2816b9 Can disable code_challenge for specific clients 2022-04-15 19:26:17 +02:00
cac461e03d Can bypass code verifier for specific clients 2022-04-15 18:28:53 +02:00
1d21b30b68 Fix bad issuer 2022-04-15 17:30:43 +02:00
e0016b8305 More permissive redirect uris 2022-04-15 17:27:53 +02:00
819210ae86 Userinfo endpoint is working 2022-04-15 17:04:23 +02:00
b867016a71 Start to build userinfo endpoint 2022-04-14 18:39:18 +02:00
45f125a331 Add code challenge support 2022-04-14 18:04:01 +02:00
0b64c88fc6 Normalize error responses 2022-04-14 17:13:07 +02:00
078a913f6a Can request refresh tokens 2022-04-14 17:02:47 +02:00
53a540139c Emit id_token 2022-04-13 19:07:58 +02:00
d69b44528e Add /openid/token route 2022-04-12 20:40:44 +02:00
88e34902c0 cargo clippy 2022-04-09 12:25:56 +02:00
5633aae029 Check if user is authorized to access an application before authenticating him 2022-04-09 12:24:03 +02:00
b10215ae9c Save open id session 2022-04-09 12:18:59 +02:00
c4bc559b4d Check OpenID request parameters 2022-04-09 11:30:23 +02:00
7978706803 Add openid-connecter discovery route 2022-04-08 18:53:57 +02:00
c7d075f94e Can delete user account 2022-04-08 17:54:51 +02:00
65dac1e923 Can update user information 2022-04-08 16:28:19 +02:00
91817bd2a4 Fix bad strings 2022-04-07 19:02:34 +02:00
4e14e383b4 cargo clippy 2022-04-07 19:00:36 +02:00
c9ca23cd82 Can create user accounts 2022-04-07 18:59:48 +02:00