baarkerlounger
1fa214d18d
Return 422 for turbo on max login attempts reached
3 years ago
baarkerlounger
649be2bed9
Allow form to be created with model
3 years ago
baarkerlounger
9ce2edde3f
Return 422 on failed code
3 years ago
Gustavo Lazaro Amendola
2d3650dd59
Autofocus MFA code text field
...
This is a small change which will make users life so much easier.
6 years ago
Ladislav Gallay
8b3c424a4a
Fix integer to seconds in remember_otp_session_for_seconds
7 years ago
Jonathan Kirst
93674d2aea
dynamically generate path based on resource scope
8 years ago
Philipp Staender
0d9bc8da0e
Check and use if newer bypass_sign_in method exists in devise
8 years ago
Gaurish Sharma
348c2a1cce
[PR Feedback] Use Devise::Version over respond_to?
8 years ago
Gaurish Sharma
ffbad70848
Add compat with older versions of devise
8 years ago
Gaurish Sharma
5b81724c01
Stop hardcoding User, use generic resource
...
User can also be called Admin. so use generic "resource" same way devise uses.
8 years ago
Konrad Jurkowski
a96352315a
Keep method name in convention
8 years ago
Konrad Jurkowski
198ef91997
Allow to customize value passed to 2fa remember cookie
8 years ago
amoose
8908b47113
Updates deprecated Devise methods
8 years ago
Tigran Apoyan
838173a881
set correct devise scope
8 years ago
Aubin LORIEUX
b78d221f37
Fix set_flash_message for :attempt_failed
9 years ago
Sam Clegg
eed1bf62a1
Add support for directly delivered OTP codes
...
Direct OTP codes are ones that are delivered directly to
the user (e.g. SMS) via send_two_factor_authentication_code.
These are randomly generated, short lived, and stored
directly in the database.
TOTP (and the rotp gem) is now only enabled for those user
that have a shared secret (user.create_otp_secret).
9 years ago
Moncef Belyamani
c684db2330
Drop support for Rails 3.2
...
**Why**: To be able to support Rails 5 without deprecation warnings,
we need to replace `before_filter` with `before_action`.
`before_action` is not supported in Rails 3.2, so we need to bump the
major version number since this will be a breaking change for people
who can't upgrade Rails.
9 years ago
Eugene Surzhko
5c66499bb1
replaced flash :error key with :alert
9 years ago
Marc Lennox
fd7e18c2ea
Removed Rails 5 deprecation warnings
9 years ago
Dmitrii Golub
60f64680df
Resend code localization
9 years ago
Dmitrii Golub
bdb89e50f8
fix: different cookies for different users
9 years ago
Kevin Pheasey
67b8ca7ae4
Abstract logic for two factor success and fail into separate methods. Further abstract the path for after success into a third method.
9 years ago
Paul Bowsher
8d4da3beb5
Add support for remembering a user's 2FA session in a cookie
...
This makes the gem store a signed cookie for a configurable amount of
time that allows the user to bypass 2FA. Our use-case for this is that
we expire user’s Devise sessions after 12 hours, but don’t want to
force them to authenticate using 2FA every day.
Signed cookies are available since Rails 3. This requires the signing
functionality to be properly configured, but is disabled by setting the
config variable to `0`, the default.
9 years ago
JD Trout
14adcce362
Add ability to resend code
10 years ago
Laust Rud Jacobsen
c87d591541
Extract reused Warden key constant
11 years ago
Karol Sarnacki
f3a39237fa
Use Strings and not Symbols for keys when storing variable in warden session
11 years ago
Ross Kaffenberger
0a57c06d15
feature spec for checking max attempts before show
11 years ago
Ross Kaffenberger
c49c267928
Feature spec for max login attempts
...
adds nickname column to dummy app user
Update feature specs with user nickname; add max login attempt spec
regenerate schema
11 years ago
Ross Kaffenberger
f46a62720c
happy path feature specs for two factor auth
11 years ago
Matt Mueller
3d8b6c484d
Controller: authenticate using new one time password algorithm.
11 years ago
Edger
2ad13ed8b2
added rus locallization for max attempts and their limit
11 years ago
Edger
414475e8e8
added rus locallization for max attempts and their limit
11 years ago
John Bradley
8f32e92f96
Setting an error message (instead of a notice) on attempt failure.
12 years ago
John Bradley
2b77e843c5
Typo and punctuation corrections.
12 years ago
Dmitrii Golub
e4c812ad6d
first commit
13 years ago