Pēteris Caune 568a287850

Fix WebAuthn registration to use random bytes for user handle ...

User handle is used in a username-less authentication, to map a
credential received from browser with an user account in the
database. Since we only use security keys as a second factor,
the user handle is not of much use to us.

The user handle:
 - must not be blank,
 - must not be a constant value,
 - must not contain personally identifiable information.

So we use random bytes, and don't store them on our end.

2020-11-19 13:59:23 +02:00

..

management

Less verbose output in the senddeletionnotices command

2020-08-18 11:05:04 +03:00

migrations

Implement a "Remove Security Key" feature

2020-11-14 11:45:09 +02:00

tests

Fix capitalization, Webauthn -> WebAuthn

2020-11-19 13:01:26 +02:00

__init__.py

Initial commit

2015-06-11 22:12:09 +03:00

admin.py

In channels admin, don't show the notification counts, querying it is too expensive.

2020-08-18 13:30:24 +03:00

backends.py

request.project is now unused, removing

2020-02-26 10:37:19 +02:00

decorators.py

Add rate limiting to the sudo code form

2020-11-13 22:04:19 +02:00

forms.py

Fix capitalization, Webauthn -> WebAuthn

2020-11-19 13:01:26 +02:00

middleware.py

request.project is now unused, removing

2020-02-26 10:37:19 +02:00

models.py

Update the "Change Email" function to use confirmation codes

2020-11-16 15:33:29 +02:00

urls.py

Update the "Change Email" function to use confirmation codes

2020-11-16 15:33:29 +02:00

views.py

Fix WebAuthn registration to use random bytes for user handle

2020-11-19 13:59:23 +02:00