Pēteris Caune 568a287850

Fix WebAuthn registration to use random bytes for user handle ...

User handle is used in a username-less authentication, to map a
credential received from browser with an user account in the
database. Since we only use security keys as a second factor,
the user handle is not of much use to us.

The user handle:
 - must not be blank,
 - must not be a constant value,
 - must not contain personally identifiable information.

So we use random bytes, and don't store them on our end.

2020-11-19 13:59:23 +02:00

..

accounts

Fix WebAuthn registration to use random bytes for user handle

2020-11-19 13:59:23 +02:00

api

Simplify super() calls in tests

2020-11-16 11:20:01 +02:00

front

Simplify super() calls in tests

2020-11-16 11:20:01 +02:00

lib

Update the "Change Email" function to use confirmation codes

2020-11-16 15:33:29 +02:00

payments

Simplify super() calls in tests

2020-11-16 11:20:01 +02:00

__init__.py

Initial commit

2015-06-11 22:12:09 +03:00

local_settings.py.example

Simplify: remove djmail and django-ses-backend dependencies.

2017-01-29 11:44:22 +02:00

settings.py

Fix capitalization, Webauthn -> WebAuthn

2020-11-19 13:01:26 +02:00

test.py

Update the "Set Password" function to use confirmation codes

2020-11-16 14:53:50 +02:00

urls.py

Source formatted with Black

2019-05-15 14:27:50 +03:00

wsgi.py

Initial commit

2015-06-11 22:12:09 +03:00