forgejo/models/auth
Gusted 63736e8301
[FEAT] Add support for webauthn credential level 3
- For WebAuthn Credential level 3, the `backup_eligible` and
`backup_state` flags are checked if they are consistent with the values
given on login. Forgejo never stored this data, so add a database
migration that makes all webauthn credentials 'legacy' and on the next
first use capture the values of `backup_eligible` and `backup_state`.
As suggested in https://github.com/go-webauthn/webauthn/discussions/219#discussioncomment-10429662
- Adds unit tests.
- Add E2E test.
2024-08-29 10:05:03 +02:00
..
TestOrphanedOAuth2Applications [BUG] Don't remove builtin OAuth2 applications 2024-04-06 01:07:45 +02:00
access_token.go
access_token_scope.go [GITEA] silently ignore obsolete sudo scope 2024-02-05 16:05:50 +01:00
access_token_scope_test.go [GITEA] silently ignore obsolete sudo scope 2024-02-05 16:05:50 +01:00
access_token_test.go Add testifylint to lint checks (#4535) 2024-07-30 19:41:10 +00:00
auth_token.go [SECURITY] Rework long-term authentication 2024-02-05 15:06:15 +01:00
main_test.go
oauth2.go chore: use errors.New to replace fmt.Errorf with no parameters will much better (#30621) 2024-04-28 15:39:00 +02:00
oauth2_list.go
oauth2_test.go Fix linting issues 2024-08-18 16:25:13 +02:00
session.go Fix session key conflict with database keyword (#28613) 2023-12-27 15:24:23 +08:00
session_test.go Add testifylint to lint checks (#4535) 2024-07-30 19:41:10 +00:00
source.go allow synchronizing user status from OAuth2 login providers (#31572) 2024-07-22 15:44:13 +02:00
source_test.go Add testifylint to lint checks (#4535) 2024-07-30 19:41:10 +00:00
twofactor.go [GITEA] Drop sha256-simd in favor of stdlib 2024-02-05 16:09:40 +01:00
webauthn.go [FEAT] Add support for webauthn credential level 3 2024-08-29 10:05:03 +02:00
webauthn_test.go [FEAT] Add support for webauthn credential level 3 2024-08-29 10:05:03 +02:00