Clément Michaud 3816aa4df2 [FEATURE] Regenerate session IDs after 2FA authentication. (#670) ... Session fixation attacks were prevented because a session ID was regenerated at each first factor authentication but this commit generalize session regeneration from first to second factor too. Fixes #180		2020-03-01 00:13:33 +01:00
..
authentication	[BUGFIX] Fix crash when no emails or groups are retrieved from LDAP. (#651)	2020-02-27 23:21:07 +01:00
authorization	[MISC] Add unit tests to authorization module and trace logs. (#638)	2020-02-19 09:15:09 +11:00
commands	Add hash-password and migrate commands to authelia binary.	2020-01-22 11:53:15 +11:00
configuration	[FEATURE] Redis DB Index Selection (#653)	2020-02-28 11:14:44 +11:00
duo	Move source code into internal directory to follow standard project layout.	2019-11-17 16:30:33 +01:00
handlers	[FEATURE] Regenerate session IDs after 2FA authentication. (#670)	2020-03-01 00:13:33 +01:00
logging	Misc Spelling Corrections	2020-01-21 12:16:00 +11:00
middlewares	[MISC] Fail with an error message when X-Forwarded-* headers are missing (#631)	2020-02-13 13:12:37 +11:00
mocks	[FIX] Redirect to default URL after 1FA when default policy is one_factor. (#611)	2020-02-05 08:18:02 +11:00
models	Move source code into internal directory to follow standard project layout.	2019-11-17 16:30:33 +01:00
notification	[FEATURE] SMTPS support (#643)	2020-02-20 12:09:46 +11:00
regulation	[FIX] Disable regulation when max_retries set to 0 (#584)	2020-01-27 22:54:24 +11:00
server	[FIX] Fix default redirection URL not taken into account (#600)	2020-02-01 13:54:50 +01:00
session	[FEATURE] Redis DB Index Selection (#653)	2020-02-28 11:14:44 +11:00
storage	Fix spelling errors	2020-01-10 11:33:18 +01:00
suites	Fix development workflow. (#649)	2020-02-27 10:44:29 +01:00
templates	Force TLS and valid x509 certs in SMTP Notifier by default	2020-01-10 17:37:16 +01:00
utils	[FIX] Fix default redirection URL not taken into account (#600)	2020-02-01 13:54:50 +01:00