cwinfo/powerdns-admin
5
0
Fork 0
mirror of https://github.com/cwinfo/powerdns-admin.git synced 2024-11-08 14:40:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
846c03f154
powerdns-admin/powerdnsadmin
History
Pascal de Bruijn 846c03f154 models/user.py: add non-zero valid_window to totp.verify 
PyOTP's totp.verify defaults to the valid_window of zero, which means
it will reject valid codes, if submitted just past the 30 sec window.
It also means, users will run into authentication issues very quickly
if their phones time-sync isn't perfect.

Therefore valid_window should at the very least be 1 or more, settting
it higher trades security for robustness, especially with regard to
time desync issues.
2022-09-07 14:23:34 +02:00
..
lib feat: Move the account parse calls to a method 2022-06-18 14:30:56 +02:00
models models/user.py: add non-zero valid_window to totp.verify 2022-09-07 14:23:34 +02:00
routes Merge pull request #1221 from corubba/bugfix/changelog-hyphen 2022-07-01 15:52:44 +03:00
services Use HTTP_X_FORWARDED_PROTO header from reverse proxy to rewrite https:// for SAML request URLs 2022-05-19 19:00:38 -07:00
static Add general modal functions 2022-05-19 00:53:20 +02:00
templates Fix rrset changelog for names with hyphen 2022-06-19 12:16:40 +02:00
__init__.py Fix csrf configuration 2022-06-18 18:51:40 +02:00
assets.py fix: Update JS minifier library 2022-06-24 23:03:01 +02:00
decorators.py enh: Enforce Record Restrictions in API (#1089) 2022-06-18 14:20:49 +02:00
default_config.py Set SameSite on cookies 2022-06-18 18:51:42 +02:00
swagger-spec.yaml Updated the unknown state 2022-05-23 16:46:11 +00:00