New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Two-Factor Authentication for SMF using TOTP protocol #2547
Commits on Dec 2, 2014
-
Class taken from github.com/enygma/gauth, renamed to \TOTP\Auth since it's a pretty generic TOTP class. Will be used for implementing TFA in SMF Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 6704325 - Browse repository at this point
Copy the full SHA 6704325View commit details -
Add tfa_secret and tfa_backup columns to the member table
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 9113e81 - Browse repository at this point
Copy the full SHA 9113e81View commit details -
Add Two-Factor Authentication profile area
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 1b2a004 - Browse repository at this point
Copy the full SHA 1b2a004View commit details -
Configuration menu - View commit details
-
Copy full SHA for b83ab3c - Browse repository at this point
Copy the full SHA b83ab3cView commit details -
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 7325be1 - Browse repository at this point
Copy the full SHA 7325be1View commit details -
Add form for logging TFA members in
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for ab18731 - Browse repository at this point
Copy the full SHA ab18731View commit details -
Use tfa_backup instead of tfa_secret for cookie
Don't expose tfa_secret in any form to the client side, tfa_backup is bcrypt encrypted and much harder to crack as compared to the plain text tfa_secret Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 6885c37 - Browse repository at this point
Copy the full SHA 6885c37View commit details -
Configuration menu - View commit details
-
Copy full SHA for 0424a55 - Browse repository at this point
Copy the full SHA 0424a55View commit details -
Empty the 2FA cookie on logout as well
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 37bb694 - Browse repository at this point
Copy the full SHA 37bb694View commit details -
Wipe user's 2FA preferences when using a backup code
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 4fda9c4 - Browse repository at this point
Copy the full SHA 4fda9c4View commit details -
Don't load additional layers when sending a AJAX request to login2
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 433b792 - Browse repository at this point
Copy the full SHA 433b792View commit details -
Add 2FA mode settings to Cookie and Session settings page
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for efd76bf - Browse repository at this point
Copy the full SHA efd76bfView commit details -
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for f1bd1e3 - Browse repository at this point
Copy the full SHA f1bd1e3View commit details -
Configuration menu - View commit details
-
Copy full SHA for bdc1a74 - Browse repository at this point
Copy the full SHA bdc1a74View commit details -
Some 2FA setup template improvements
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 455acc8 - Browse repository at this point
Copy the full SHA 455acc8View commit details -
Add enygma/gauth to contributers.txt
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 3850892 - Browse repository at this point
Copy the full SHA 3850892View commit details -
Add missing external credits to the credits page
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for e9d346e - Browse repository at this point
Copy the full SHA e9d346eView commit details -
Account for user in 2FA profile area
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 3d88a15 - Browse repository at this point
Copy the full SHA 3d88a15View commit details -
Configuration menu - View commit details
-
Copy full SHA for c1db532 - Browse repository at this point
Copy the full SHA c1db532View commit details -
Don't reset $_COOKIE[$cookiename] during TFA authentication
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 9f5b7ff - Browse repository at this point
Copy the full SHA 9f5b7ffView commit details -
Update cookie validation regex with increased length of SHA512
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 00f2864 - Browse repository at this point
Copy the full SHA 00f2864View commit details -
$user_settings['member_name'] instead of username
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for ff2854b - Browse repository at this point
Copy the full SHA ff2854bView commit details -
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 9c3534f - Browse repository at this point
Copy the full SHA 9c3534fView commit details -
Don't have space in QR code identifier
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for e05cec3 - Browse repository at this point
Copy the full SHA e05cec3View commit details -
Configuration menu - View commit details
-
Copy full SHA for 6343075 - Browse repository at this point
Copy the full SHA 6343075View commit details -
Ask for password when enabling 2FA
Additional security Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 7c8862c - Browse repository at this point
Copy the full SHA 7c8862cView commit details -
Increase max height of overlay boxes to 30em
Signed-off-by: Shitiz Garg <mail@dragooon.net>
Configuration menu - View commit details
-
Copy full SHA for 71c148e - Browse repository at this point
Copy the full SHA 71c148eView commit details