1
0
Fork 1
Spiegel von https://github.com/dani-garcia/vaultwarden.git synchronisiert 2024-11-22 05:10:29 +01:00
vaultwarden/src
0x0fbc b4b2701905
Add support for MFA with Duo's Universal Prompt (#4637)
* Add initial working Duo Universal Prompt support.

* Add db schema and models for Duo 2FA state storage

* store duo states in the database and validate during authentication

* cleanup & comments

* bump state/nonce length

* replace stray use of TimeDelta

* more cleanup

* bind Duo oauth flow to device id, drop redundant device type handling

* drop redundant alphanum string generation code

* error handling cleanup

* directly use JWT_VALIDITY_SECS constant instead of copying it to DuoClient instances

* remove redundant explicit returns, rustfmt

* rearrange constants, update comments, error message

* override charset on duo state column to ascii for mysql

* Reduce twofactor_duo_ctx state/nonce column size in postgres and maria

* Add fixes suggested by clippy

* rustfmt

* Update to use the make_http_request

* Don't handle OrganizationDuo

* move Duo API endpoint fmt strings out of macros and into format! calls

* Add missing indentation

Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>

* remove redundant expiry check when purging Duo contexts

---------

Co-authored-by: BlackDex <black.dex@gmail.com>
Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
2024-07-24 16:50:35 +02:00
..
api Add support for MFA with Duo's Universal Prompt (#4637) 2024-07-24 16:50:35 +02:00
db Add support for MFA with Duo's Universal Prompt (#4637) 2024-07-24 16:50:35 +02:00
static Update admin interface (#4737) 2024-07-12 22:59:48 +02:00
auth.rs Fix for RSA Keys which are read only (#4744) 2024-07-17 12:59:22 +02:00
config.rs Add support for MFA with Duo's Universal Prompt (#4637) 2024-07-24 16:50:35 +02:00
crypto.rs Remove get_random_64() 2022-11-13 10:03:06 +01:00
error.rs Improved HTTP client (#4740) 2024-07-12 22:33:11 +02:00
http_client.rs Improved HTTP client (#4740) 2024-07-12 22:33:11 +02:00
mail.rs Add Protected Actions Check (#4067) 2023-11-12 22:15:44 +01:00
main.rs Add support for MFA with Duo's Universal Prompt (#4637) 2024-07-24 16:50:35 +02:00
ratelimit.rs Basic ratelimit for user login (including 2FA) and admin login 2021-12-22 21:48:49 +01:00
util.rs Improved HTTP client (#4740) 2024-07-12 22:33:11 +02:00