Daniel García
|
a797459560
|
Implement HIBP check [WIP].
Add extra security attributes to admin cookie.
Error handling.
|
6 years ago |
|
Daniel García
|
6cbb683f99
|
Rename admin templates to match email
|
6 years ago |
|
Daniel García
|
92bbb98d48
|
Created base template
|
6 years ago |
|
Daniel García
|
834c847746
|
Implement admin JWT cookie, separate JWT issuers for each type of token and migrate admin page to handlebars template
|
6 years ago |
|
Daniel García
|
a0a08c4c5a
|
Include IP in invalid admin token error
|
6 years ago |
|
Daniel García
|
4309df8334
|
Only create invitations when SMTP is disabled, and ignore invitations if we have a token.
Disallow users from accepting invitation twice
|
6 years ago |
Nick Fox
|
0a74e79cea
|
Refactor generate_invite_claims, make org_name and org_id optional
|
6 years ago |
|
Nick Fox
|
cec28a85ac
|
Update admin page to work with new invitation flow
|
6 years ago |
|
Daniel García
|
b2fc0499f6
|
Finish invite functionality, and remove virtual organization
|
6 years ago |
|
Daniel García
|
6a99849a1e
|
Implemented proper error handling, now we can do `user.save($conn)?;` and it works.
In the future, maybe we can do the same with the `find_by_id` methods that return an Option.
|
6 years ago |
|
Daniel García
|
1b5134dfe2
|
Fixed delete user when 2FA is enabled, implemented delete user for admin panel, and the front-end part for invite user. Secured admin panel behind a configurable token.
|
6 years ago |
|
Daniel García
|
5fecf09631
|
Initial version of admin panel, list users and reload user list works. No serious auth method yet, password is 'token123'
|
6 years ago |
