authelia

Commit Graph

Author	SHA1	Message	Date
James Elliott	ce6bf74c8d	fix(server): incorrect remote ip logged in error handler (#3139 ) This fixes edge cases where the remote IP was not correctly logged. Generally this is not an issue as most errors do not hit this handler, but in instances where a transport error occurs this is important.	2022-04-08 14:13:47 +10:00
James Elliott	104a61ecd6	refactor(web): only fetch totp conf if required (#2663 ) Prevents the TOTP user config from being requested when the user has not registered or is already authenticated 2FA.	2021-12-02 21:28:16 +11:00
James Elliott	ad8e844af6	feat(totp): algorithm and digits config (#2634 ) Allow users to configure the TOTP Algorithm and Digits. This should be used with caution as many TOTP applications do not support it. Some will also fail to notify the user that there is an issue. i.e. if the algorithm in the QR code is sha512, they continue to generate one time passwords with sha1. In addition this drastically refactors TOTP in general to be more user friendly by not forcing them to register a new device if the administrator changes the period (or algorithm). Fixes #1226.	2021-12-01 23:11:29 +11:00

Author

SHA1

Message

Date

James Elliott

ce6bf74c8d

fix(server): incorrect remote ip logged in error handler (#3139 )

This fixes edge cases where the remote IP was not correctly logged. Generally this is not an issue as most errors do not hit this handler, but in instances where a transport error occurs this is important.

2022-04-08 14:13:47 +10:00

James Elliott

104a61ecd6

refactor(web): only fetch totp conf if required (#2663 )

Prevents the TOTP user config from being requested when the user has not registered or is already authenticated 2FA.

2021-12-02 21:28:16 +11:00

James Elliott

ad8e844af6

feat(totp): algorithm and digits config (#2634 )

Allow users to configure the TOTP Algorithm and Digits. This should be used with caution as many TOTP applications do not support it. Some will also fail to notify the user that there is an issue. i.e. if the algorithm in the QR code is sha512, they continue to generate one time passwords with sha1. In addition this drastically refactors TOTP in general to be more user friendly by not forcing them to register a new device if the administrator changes the period (or algorithm).

Fixes #1226.

2021-12-01 23:11:29 +11:00

3 Commits (37de389c2ff18ecac7b66c3168941496e038ef37)