Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Two-factor authentication #13000

Merged
merged 111 commits into from
Dec 9, 2023
Merged

Two-factor authentication #13000

Show file tree
Hide file tree
Changes from 42 commits
Commits
Show all changes
111 commits
Select commit Hold shift + click to select a range
192a765
MFA flow WIP
i-just Feb 27, 2023
8b6ff5c
MFA authentication component WIP
i-just Mar 1, 2023
f9221d3
GA OPT continued, EmailCode added
i-just Mar 1, 2023
8946b1e
started hooking up alternative options
i-just Mar 1, 2023
0db29e5
alternative mfa options hookup cont.
i-just Mar 2, 2023
216c2a5
started setting up user edit form
i-just Mar 2, 2023
daf3d36
rename all things
i-just Mar 2, 2023
7221624
separated js, tweaks
i-just Mar 2, 2023
434be1f
tweaks
i-just Mar 2, 2023
ed937e8
mfa option to mfa type
i-just Mar 2, 2023
37a75b7
save the user requireMfa property
i-just Mar 3, 2023
45ff8b7
added configurable mfa type
i-just Mar 6, 2023
27078ed
tweaks and translations
i-just Mar 8, 2023
aeb2525
compiled assets
i-just Mar 8, 2023
ed8663a
Squashed commit of the following:
i-just Mar 9, 2023
27f1d50
started on FE login adjustments
i-just Mar 9, 2023
3e66646
alternative mfa without JS
i-just Mar 13, 2023
7e2a429
don't rely on session data only
i-just Mar 13, 2023
5dbfc91
showing errors + tweaks
i-just Mar 13, 2023
b0a0319
verification email sent message
i-just Mar 13, 2023
d1f4e27
compiled assets
i-just Mar 14, 2023
29beea6
beginning of the webauthn
i-just Mar 14, 2023
ca2343f
webauthn registration cont.
i-just Mar 15, 2023
65bfd6c
handling errors and statuses
i-just Mar 15, 2023
ac96910
managing security keys
i-just Mar 15, 2023
6812d53
prep for login via webauthn
i-just Mar 17, 2023
fbd4bbf
webauthn login hooked up
i-just Mar 17, 2023
ae0ed0c
tweaks
i-just Mar 20, 2023
004a4fa
user settings for mfa
i-just Mar 20, 2023
2e6605b
global user settings continued
i-just Mar 20, 2023
87f0257
cleanup
i-just Mar 20, 2023
61ce656
auth manager changes
i-just Mar 22, 2023
1cc5931
built assets
i-just Mar 22, 2023
c71ae80
Merge branch 'develop' into feature/dev-13-mfa-v2
i-just Mar 28, 2023
e926071
removed todo comments
i-just Mar 28, 2023
f849b4e
styles adjustment
i-just Apr 4, 2023
17e0517
todo tweaks
i-just Apr 4, 2023
805ce81
Merge branch 'develop' into feature/dev-13-mfa-v2
i-just Apr 5, 2023
7dae917
submit setup form in slideout on 'enter'
i-just Apr 5, 2023
6b75c00
Merge branch '4.5' into feature/dev-13-mfa-v2
brandonkelly Apr 25, 2023
7be952f
Fixed pre-update SQL error
brandonkelly Apr 25, 2023
a9ab114
Merge branch '4.5' into feature/dev-13-mfa-v2
brandonkelly Apr 26, 2023
d8e61c2
started mfa to auth
i-just Apr 26, 2023
3e0bdca
further rename assets bundle
i-just Apr 26, 2023
d4bd4ce
more mfa to 2fa renaming
i-just Apr 26, 2023
6f55263
finish mfa to 2fa renaming
i-just Apr 27, 2023
7c9a06f
remove email code 2fa type
i-just Apr 27, 2023
06cbdc1
Merge remote-tracking branch 'origin/4.5' into feature/dev-13-mfa-v2
i-just Apr 27, 2023
786f8a8
webauthn as a 2fa method (WIP)
i-just Apr 27, 2023
3b1df7e
webauthn as 2fa method finished
i-just Apr 28, 2023
b0cb94f
removed console.log
i-just Apr 28, 2023
65aaf03
remove has2fa user param
i-just May 2, 2023
cba5847
Merge branch '5.0' into feature/dev-13-mfa-v2
i-just May 3, 2023
9db0c27
tweaks
i-just May 3, 2023
f9821f3
recovery codes WIP
i-just May 3, 2023
2727fb4
download recovery codes
i-just May 4, 2023
f9e1bbd
js amends
i-just May 4, 2023
f7e9436
missed string translations
i-just May 4, 2023
eb7fbf6
usernameless webauth (WIP)
i-just May 5, 2023
5b872f6
alternative 2fa methods amends
i-just May 10, 2023
95292f3
login and setup styling amends
i-just May 10, 2023
70abc1a
check if browser supports platform authenticators
i-just May 10, 2023
674233d
aaand a bug fix
i-just May 10, 2023
6ab9881
elevate session with passkey (WIP)
i-just May 11, 2023
3e2f89b
webauthn js tweaks
i-just May 12, 2023
8906eeb
only use usernameless for login, not elevating session and auth manager
i-just May 12, 2023
cbfde49
Merge branch '5.0' into feature/dev-13-mfa-v2
i-just May 12, 2023
ce8c4e7
only show passkey option if user has security keys set up
i-just May 12, 2023
c93f0df
improved error handling
i-just May 12, 2023
287cdd9
is 2fa required bugfix - don't count webauthn
i-just May 16, 2023
f6d8184
default passkey name
i-just May 16, 2023
665b2ac
if platform auth not available hide passkey option
i-just May 16, 2023
c3cfc7b
@since tag updates
i-just May 16, 2023
40012cd
bug fixes & compiled assets
i-just May 16, 2023
3c1006e
add security key - double-click prevention
i-just May 16, 2023
a411fca
Merge branch '5.0' into feature/dev-13-mfa-v2
i-just May 22, 2023
be383be
tweaks
i-just May 22, 2023
fb499c2
Merge branch '5.0' into feature/dev-13-mfa-v2
i-just May 25, 2023
aa8a5d1
accessibility adjustments
i-just May 25, 2023
66eaeac
Merge branch '5.0' into feature/dev-13-mfa-v2
i-just Sep 27, 2023
446a254
Merge branch '5.0' into feature/dev-13-mfa-v2
i-just Oct 17, 2023
8c08b6d
bring back autofocus
i-just Oct 17, 2023
248e37c
tweaks
i-just Oct 17, 2023
8b56da2
more tweaks
i-just Oct 17, 2023
bd2926b
namespace changes & cleanup
i-just Oct 17, 2023
4312590
Merge branch '5.0' into feature/dev-13-mfa-v2
brandonkelly Oct 18, 2023
c111382
Merge branch '5.0' into feature/dev-13-mfa-v2
brandonkelly Nov 15, 2023
abd7fad
_accountfields → _profile-fields
brandonkelly Nov 15, 2023
472716b
Merge branch '5.0' into feature/dev-13-mfa-v2
brandonkelly Nov 16, 2023
c8c391d
Merge branch '5.0' into feature/dev-13-mfa-v2
brandonkelly Nov 17, 2023
394564e
Merge branch '5.0' into feature/dev-13-mfa-v2
brandonkelly Nov 19, 2023
065e361
Merge branch '5.0' into feature/dev-13-mfa-v2
brandonkelly Nov 21, 2023
88abb03
Merge branch '5.0' into feature/dev-13-mfa-v2
brandonkelly Nov 21, 2023
abeffcb
Merge branch '5.0' into feature/dev-13-mfa-v2
brandonkelly Nov 21, 2023
8652107
Merge branch '5.0' into feature/dev-13-mfa-v2
brandonkelly Nov 22, 2023
bd17df5
Merge branch '5.0' into feature/dev-13-mfa-v2
brandonkelly Nov 27, 2023
9a42e8e
Merge branch '5.0' into feature/dev-13-mfa-v2
brandonkelly Nov 28, 2023
d75367d
Changed some code
brandonkelly Dec 7, 2023
2153493
Drop the Require 2FA setting for now
brandonkelly Dec 7, 2023
d8c7295
Fix 'undefined' error
brandonkelly Dec 7, 2023
e7fc838
Abort passkey setup if the name prompt is cancelled
brandonkelly Dec 7, 2023
29a6310
Codes
brandonkelly Dec 7, 2023
8bd50b4
Bring back “Require Two-Step Verification” user setting
brandonkelly Dec 7, 2023
cc39a23
.first
brandonkelly Dec 7, 2023
384faf1
Show user validation errors
brandonkelly Dec 8, 2023
394cf40
Always require user emails, but only validate uniqueness for active/p…
brandonkelly Dec 8, 2023
863cf36
Users service cleanup + show validation flash errors for activation r…
brandonkelly Dec 9, 2023
90e371c
Make it possible to view unsaved + unpublished draft users
brandonkelly Dec 9, 2023
c445292
Fixed Admin setting
brandonkelly Dec 9, 2023
f6fb203
Cleanup
brandonkelly Dec 9, 2023
32ef81e
Release notes
brandonkelly Dec 9, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
204 changes: 203 additions & 1 deletion CHANGELOG.md
View file
Open in desktop

Large diffs are not rendered by default.

3 changes: 3 additions & 0 deletions composer.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -34,6 +34,7 @@
"ext-pcre": "*",
"ext-pdo": "*",
"ext-zip": "*",
"bacon/bacon-qr-code": "^2.0",
"commerceguys/addressing": "^1.2",
"composer/composer": "2.2.19",
"craftcms/oauth2-craftid": "~1.0.0",
Expand All @@ -49,6 +50,7 @@
"moneyphp/money": "^4.0",
"monolog/monolog": "^2.3",
"pixelandtonic/imagine": "~1.3.3.1",
"pragmarx/google2fa": "^8.0",
"samdark/yii2-psr-log-target": "^1.1.3",
"seld/cli-prompt": "^1.0.4",
"symfony/http-client": "^6.0.3",
Expand All @@ -57,6 +59,7 @@
"theiconic/name-parser": "^1.2",
"twig/twig": "~3.4.3",
"voku/stringy": "^6.4.0",
"web-auth/webauthn-lib": "^3.3",
"webonyx/graphql-php": "~14.11.5",
"yiisoft/yii2": "~2.0.47.0",
"yiisoft/yii2-debug": "~2.1.22.0",
Expand Down
Loading