authelia

Commit Graph

Author	SHA1	Message	Date
Clément Michaud	3816aa4df2	[FEATURE] Regenerate session IDs after 2FA authentication. (#670 ) Session fixation attacks were prevented because a session ID was regenerated at each first factor authentication but this commit generalize session regeneration from first to second factor too. Fixes #180	2020-03-01 00:13:33 +01:00
Clément Michaud	ea9b408b70	[FIX] Fix default redirection URL not taken into account (#600 ) * Remove unused mongo docker-compose file. * Default redirection URL was not taken into account. * Fix possible storage options in config template. * Remove useless checks in u2f registration endpoints. * Add default redirection url in config of duo suite. * Fix log line in response handler of 2FA methods. * Fix integration tests. Co-authored-by: Amir Zarrinkafsh <nightah@me.com>	2020-02-01 13:54:50 +01:00

Author

SHA1

Message

Date

Clément Michaud

3816aa4df2

[FEATURE] Regenerate session IDs after 2FA authentication. (#670 )

Session fixation attacks were prevented because a session ID was
regenerated at each first factor authentication but this commit
generalize session regeneration from first to second factor too.

Fixes #180

2020-03-01 00:13:33 +01:00

Clément Michaud

ea9b408b70

[FIX] Fix default redirection URL not taken into account (#600 )

* Remove unused mongo docker-compose file.

* Default redirection URL was not taken into account.

* Fix possible storage options in config template.

* Remove useless checks in u2f registration endpoints.

* Add default redirection url in config of duo suite.

* Fix log line in response handler of 2FA methods.

* Fix integration tests.

Co-authored-by: Amir Zarrinkafsh <nightah@me.com>

2020-02-01 13:54:50 +01:00

2 Commits (cc6650dbcd7ede111e806b9674ab3142fab0c921)