Nemcio/Grav-Admin-Plugin
1
0
Fork 0
mirror of https://github.com/getgrav/grav-plugin-admin.git synced 2025-10-31 02:16:26 +01:00
Code Issues Packages Projects Releases Activity
4,493 Commits 13 Branches 239 Tags
304bb9b55739d2719b43ff5edb1fdfc858ed2e3f
Commit Graph

16 Commits

Author SHA1 Message Date
Matias Griese
396e32b76e Made path handling unicode-safe, use new Utils::basename() and Utils::pathinfo() everywhere 2022-01-26 14:11:10 +02:00
Matias Griese
e84e785978 Fixed passing null to $twoFa->verifyCode() and $twoFa->verifyYubikeyOTP() 
`
 2022-01-12 10:55:41 +02:00
Andy Miller
0f05d065b0 Support for YubiKey OTP 2 factor authenticator 2022-01-11 12:00:10 -07:00
Andy Miller
0ca2d22f86 updated some copyright years 2022-01-03 09:33:16 -07:00
Matias Griese
6463135bf0 Fixed unescaped messages in JSON responses 2021-11-03 12:42:27 +02:00
Matias Griese
2546cd35e0 Make sure that login data is an array in taskLogin() 2021-08-18 13:41:04 +03:00
Matias Griese
c097eee87f Fixed error reporting for AJAX tasks if user has no permissions 2021-04-15 10:11:04 +03:00
Matias Griese
1acb94e857 Fixed error message when user clicks logout link after his session has been expired 2021-04-13 10:16:17 +03:00
Matias Griese
9108a4a85f Fixed broken 2FA login when site is not configured to use Flex Users [#2109] 2021-04-08 10:56:18 +03:00
Matias Griese
9fca08ab43 Regression: Fixed broken 2FA form [#2109] 2021-04-07 14:14:04 +03:00
Matias Griese
58e2c6cc55 Change nonce expiration message 2021-03-31 11:48:15 +03:00
Matias Griese
aa4f80eec1 Greatly improve login related actions for Admin 
* Better isolate admin to prevent session related vulnerabilities
* Removed support for custom login redirects for improved security
* Shorten forgot password link lifetime from 7 days to 1 hour
* Fixed login related pages being accessible from admin when user has logged in
* Fixed admin user creation and password reset allowing unsafe passwords
* Fixed missing validation when registering the first admin user
* Fixed reset password email not to have session specific token in it
 2021-03-26 14:39:37 +02:00
Matias Griese
de3a557b80 Display controller exceptions in debugger 2021-01-18 12:05:24 +02:00
Matias Griese
87f3fd83ff Pass phpstan level 1 tests 2020-02-04 11:22:27 +02:00
Matias Griese
5dad360946 Fix compatibility regression 2019-08-26 10:51:10 +03:00
Matias Griese
902447a50c WIP: Added new controller for admin 2019-06-18 12:15:58 +03:00