76af2cbfc8
identity: fix 2fa recovery codes not working
2025-07-15 13:35:07 +05:00
34fa43f302
global: add some basic rate limiting
2025-07-15 13:34:31 +05:00
8d3b0d6dbf
identity: validate mfa method against user's mfa methods
2025-04-30 11:45:18 +05:00
11dff4f0cc
identity: move email sender to common
2025-04-10 12:19:49 +05:00
bbabf51073
global: newline changes
2025-04-10 11:09:28 +05:00
1c68942a6d
identity: replace Sodium.Core with Geralt
2024-10-12 11:55:52 +05:00
f3216330a1
docker: remove even more unnecessary env vars
2024-08-29 12:19:37 +05:00
9f1f3e14d7
global: remove unncessary environment variables
2024-08-06 15:52:00 +05:00
64ae13b589
identity: handle crash on introspection when user is null
2024-06-07 15:36:01 +05:00
99da765a1c
api: use wamp services instead of forwarding http requests for internal apis
2024-06-07 15:35:31 +05:00
0ce5b69f91
identity: send email even if gpg signing fails
2024-05-16 13:20:26 +05:00
1e43f7bfdd
identity: fix expired tokens not being removed
2024-03-05 10:07:54 +05:00
29eedd57e8
global: minor refactoring
2024-03-05 10:07:01 +05:00
9f4293560f
identity: only clean reference_tokens
2023-10-28 11:38:18 +05:00
aa77c543dd
identity: change disposable domains blocklist
2023-10-24 10:10:22 +05:00
aa62803c73
identity: fix build
2023-09-09 20:37:45 +05:00
3208fdd532
identity: allow twilio errors to propagate
2023-09-09 20:36:05 +05:00
2c1dc6f95e
identity: minor refactors
2023-09-09 20:31:21 +05:00
d91df60c57
identity: reset user 2fa on password reset
2023-09-09 20:31:02 +05:00
1a5fe8230e
identity: move to twilio verify for SMS 2FA
2023-09-09 20:30:35 +05:00
0ad00c9747
identity: make 2fa truly mandatory
2023-06-08 12:55:27 +05:00
99a7ffa6ae
identity: keep all grants for 12 hours before cleaning up
2023-04-27 12:26:54 +05:00
7dcda17474
identity: disable 2FA by SMS for trial users
2023-03-02 17:43:27 +05:00
20eec79cef
identity: prevent users with disposable emails from signing up
...
while this is not a perfect way to prevent abuse of service, we do want
to avoid getting spammed with fake accounts. Creating a valid email
account is significantly more cumbersome than using a disposable email
address.
Currently the list of blacklisted domains is extracted from
https://github.com/disposable/disposable
and it is refreshed after every 24 hours.
2023-03-02 17:43:10 +05:00
c560f2ac5f
identity: use Quartz.NET for token cleanup
2023-01-24 15:34:18 +05:00
f38e61d58f
global: update copyright year to 2023
2023-01-16 13:33:47 +05:00
fc17e7a2fb
identity: add support for account email changing
2023-01-16 13:25:38 +05:00
c368d32694
identity: use MultipartSigned.CreateAsync
2023-01-05 19:45:03 +05:00
c0fab8a735
global: make ready for self hosting
...
This exposes a few more env vars for configuration &
bypasses the Subscription backend
so each user is Pro by default. This is required because there won't be
any mechanism for the user to upgrade. We'll also have to disable a few
things on the client side to avoid confusion.
2022-12-30 11:23:02 +05:00
3f89ebc214
global: move more config to env vars
2022-12-29 11:18:29 +05:00
4e9f82fe48
open source identity server
2022-12-28 17:24:47 +05:00
Abdullah Atta