| #
afea3dda |
| 26-Feb-2026 |
Andreas Gohr <gohr@cosmocode.de> |
fix wrong logical check
|
| #
8bfbdf72 |
| 25-Feb-2026 |
Andreas Gohr <gohr@cosmocode.de> |
Allow token based logins without 2fa for automated access
By default token auth accesses to the API are now always allowed without
2fa. If you need automated access to other endpoints (like a script
Allow token based logins without 2fa for automated access
By default token auth accesses to the API are now always allowed without
2fa. If you need automated access to other endpoints (like a script
provided by a plugin) an option enables that.
show more ...
|
| #
95ed3afa |
| 21-Feb-2024 |
Andreas Gohr <andi@splitbrain.org> |
allow to skip 2fa for trusted IP addresses
|
| #
c8525a21 |
| 11-Jul-2023 |
Andreas Gohr <andi@splitbrain.org> |
protect password reset with 2fa
This needed some internal changes, because now 2fa data needs to be
checked for a user that is not logged in. Providers may need adjustments
if they access user data.
protect password reset with 2fa
This needed some internal changes, because now 2fa data needs to be
checked for a user that is not logged in. Providers may need adjustments
if they access user data. They should use the getUserData() method of
the abstract Provider class to do so.
show more ...
|
| #
09c2ba1a |
| 11-Jun-2023 |
alexdraconian <78018187+alexdraconian@users.noreply.github.com> |
Add "useinternaluid" option
|
| #
fbd22570 |
| 07-Jul-2022 |
Anna Dabrowska <dabrowska@cosmocode.de> |
Merge pull request #2 from cosmocode/optional
Properly handle optional 2fa
|
| #
0d5f8055 |
| 07-Jul-2022 |
Anna Dabrowska <dabrowska@cosmocode.de> |
Properly handle optional 2fa
Having twofactor enabled but no configured providers broke
authentication in some cases
Fixes #1
|
| #
03bae0e0 |
| 16-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
reuse sticky property from main cookie
When a user wants to stay logged in, the two factor auth is saved for 3
months (main login is saved for a year)
|
| #
a01d09a8 |
| 16-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
added custom OTP form field
This also fixes wilminator/dokuwiki-plugin-twofactor#26
|
| #
78279978 |
| 16-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
style adjustment
|
| #
0407d282 |
| 16-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
make 2fa login more recognizable
|
| #
16ed3964 |
| 15-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
some cleanup and streamlining for providers
|
| #
f6b61423 |
| 10-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
fix handling of multiple providers
|
| #
210d81e3 |
| 09-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
disable the user temporarily in all non-main screens
This requires the new DOKUWIKI_INIT_DONE event introduced in
splitbrain/dokuwiki#3640
|
| #
857c5abc |
| 09-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
delete cookie on logout
|
| #
5f8f561a |
| 09-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
use action to register providers
|
| #
dc037a7b |
| 03-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
fix user checking in preprocess
|
| #
c9e42a8d |
| 03-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
show proper links for alternative providers
|
| #
6c996db8 |
| 03-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
fix cookie security
The cookie is now tied to the provider and cookie secret. This way it
can not be constructed without inside knowledge.
|
| #
30625b49 |
| 03-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
Removed old code
The basic mechanisms have been reimplemented, so the old code has been
removed.
|
| #
b6119621 |
| 03-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
handle user default providers
|
| #
848a9be0 |
| 02-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
remember 2fa authentications
|
| #
a386a536 |
| 02-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
initial login handling
|
| #
8b7620a8 |
| 02-Mar-2022 |
Andreas Gohr <andi@splitbrain.org> |
use Manager singleton to check and load providers
|
| #
fca58076 |
| 15-Feb-2022 |
Andreas Gohr <andi@splitbrain.org> |
first go a profile refactoring
|