Merge pull request #301 from clems4ever/fix-u2f-2

Fix U2F sign request after U2F library upgrade.
2018-11-17 14:28:11 +01:00 · 2018-11-17 14:28:11 +01:00 · 5f8e33d6ac
parent 76326d5ff7 baa1899536
commit 5f8e33d6ac
11 changed files with 627 additions and 2288 deletions
--- a/config.minimal.yml
+++ b/config.minimal.yml
@ -86,8 +86,8 @@ regulation:

 notifier:
  # For testing purpose, notifications can be sent in a file
-   filesystem:
-     filename: /tmp/authelia/notification.txt
+  # filesystem:
+  #   filename: /tmp/authelia/notification.txt

  # Use your email account to send the notifications. You can use an app password.
  # List of valid services can be found here: https://nodemailer.com/smtp/well-known/  
@ -98,11 +98,11 @@ notifier:
  ##   service: gmail
  
  # Use a SMTP server for sending notifications
-  #smtp:
-  #  username: test
-  #  password: password
-  #  secure: false
-  #  host: 'smtp'
-  #  port: 1025
-  #  sender: admin@example.com
+  smtp:
+    username: test
+    password: password
+    secure: false
+    host: 'smtp'
+    port: 1025
+    sender: admin@example.com

--- a/package-lock.json
+++ b/package-lock.json
--- a/package.json
+++ b/package.json
@ -103,7 +103,7 @@
    "jsdom": "^11.0.0",
    "mocha": "^5.0.5",
    "mockdate": "^2.0.1",
-    "nyc": "^11.6.0",
+    "nyc": "^13.1.0",
    "power-assert": "^1.4.4",
    "proxyquire": "^2.0.1",
    "query-string": "^6.0.0",
--- a/server/src/lib/routes/secondfactor/u2f/sign_request/get.ts
+++ b/server/src/lib/routes/secondfactor/u2f/sign_request/get.ts
@ -31,8 +31,8 @@ export default function (vars: ServerVariables) {
        vars.logger.debug(req, "AppId = %s, keyHandle = %s", appId, JSON.stringify(doc.registration.keyHandle));

        const request = vars.u2f.request(appId, doc.registration.keyHandle);
-        res.json(request);
        authSession.sign_request = request;
+        res.json(request);
        return BluebirdPromise.resolve();
      })
      .catch(ErrorReplies.replyWithError200(req, res, vars.logger,
--- a/test/inactivity/00-suite.ts
+++ b/test/inactivity/00-suite.ts
@ -10,6 +10,7 @@ const includes = [
  "docker-compose.test.yml",
  "example/compose/docker-compose.base.yml",
  "example/compose/nginx/minimal/docker-compose.yml",
+  "example/compose/smtp/docker-compose.yml",
 ]


--- a/test/inactivity/keep_me_logged_in.ts
+++ b/test/inactivity/keep_me_logged_in.ts
@ -1,5 +1,5 @@
 import Bluebird = require("bluebird");
-import loginAndRegisterTotp from "../helpers/login-and-register-totp";
+import LoginAndRegisterTotp from "../helpers/login-and-register-totp";
 import VisitPage from "../helpers/visit-page";
 import FillLoginPageWithUserAndPasswordAndClick from "../helpers/fill-login-page-and-click";
 import WithDriver from "../helpers/with-driver";
@ -12,7 +12,7 @@ describe("Keep me logged in", function() {

  before(function() {
    const that = this;
-    return loginAndRegisterTotp(this.driver, "john")
+    return LoginAndRegisterTotp(this.driver, "john", true)
      .then(function(secret: string) {
        that.secret = secret;
        if(!secret) return Bluebird.reject(new Error("No secret!"));
--- a/test/minimal-config/00-suite.ts
+++ b/test/minimal-config/00-suite.ts
@ -10,6 +10,7 @@ const includes = [
  "docker-compose.minimal.yml",
  "example/compose/docker-compose.base.yml",
  "example/compose/nginx/minimal/docker-compose.yml",
+  "example/compose/smtp/docker-compose.yml",
 ]


--- a/test/minimal-config/fail_totp.ts
+++ b/test/minimal-config/fail_totp.ts
@ -25,7 +25,7 @@ describe('Fail TOTP challenge', function() {
  describe('successfully login as john', function() {
    before(function() {
      const that = this;
-      return LoginAndRegisterTotp(this.driver, "john");
+      return LoginAndRegisterTotp(this.driver, "john", true);
    });

    describe('fail second factor', function() {
--- a/test/minimal-config/register_totp.ts
+++ b/test/minimal-config/register_totp.ts
@ -14,7 +14,7 @@ describe('Registering TOTP', function() {
  describe('successfully login as john', function() {
    before('register successfully', function() {
      this.timeout(10000);
-      return LoginAndRegisterTotp(this.driver, "john");
+      return LoginAndRegisterTotp(this.driver, "john", true);
    })

    it("should see generated qrcode", function() {
--- a/test/minimal-config/reset_password.ts
+++ b/test/minimal-config/reset_password.ts
@ -9,7 +9,7 @@ import ClickOnLink from '../helpers/click-on-link';
 import ClickOnButton from '../helpers/click-on-button';
 import WaitRedirect from '../helpers/wait-redirected';
 import FillField from "../helpers/fill-field";
-import {GetLinkFromFile} from "../helpers/get-identity-link";
+import {GetLinkFromEmail} from "../helpers/get-identity-link";
 import FillLoginPageAndClick from "../helpers/fill-login-page-and-click";

 const execAsync = Bluebird.promisify(ChildProcess.exec);
@ -30,7 +30,7 @@ describe('Reset password', function() {
        .then(() => FillField(this.driver, "username", "john"))
        .then(() => ClickOnButton(this.driver, "Reset Password"))
        .then(() => this.driver.sleep(1000)) // Simulate the time to read it from mailbox.
-        .then(() => GetLinkFromFile())
+        .then(() => GetLinkFromEmail())
        .then((link) => VisitPage(this.driver, link))
        .then(() => FillField(this.driver, "password1", "newpass"))
        .then(() => FillField(this.driver, "password2", "newpass"))
--- a/test/minimal-config/validate_totp.ts
+++ b/test/minimal-config/validate_totp.ts
@ -24,7 +24,7 @@ describe('Validate TOTP factor', function() {
  describe('successfully login as john', function() {
    before(function() {
      const that = this;
-      return LoginAndRegisterTotp(this.driver, "john")
+      return LoginAndRegisterTotp(this.driver, "john", true)
        .then(function(secret: string) {
          that.secret = secret;
        })