bf91ad6c97
feat: add Internet-Only captcha rule ( #3919 )
2025-07-03 02:39:06 +08:00
87506b84e3
feat: support special chars like "+" in username parameter of /api/get-email-and-phone API ( #3824 )
2025-05-23 17:29:00 +08:00
383bf44391
feat: support OIDC device flow: "/api/device-auth" ( #3757 )
2025-04-30 23:42:26 +08:00
167c1b0f1b
feat: fix bug in WeChat OA login ( #2674 )
...
* fix: fix the problem of Wechat Official Account login
* fix: fix code format problem
* fix: add error display and fix the code format problem
* fix: i18n problem and code format
2024-02-05 21:38:12 +08:00
177f2f2f11
Add userId param to GetAllObjects() API
2024-01-13 18:03:40 +08:00
fec54944dd
feat: fix CAS login bug ( #2230 )
...
* fix: cas login
* fix: cas login
* feat: rollback get-default-app change
* fix : move cas restrict logic to GetApplicationLogin()
* fix: format code
* fix: fix getOAuthGetParameters for cas
* fix: fix getOAuthGetParameters for cas
* fix: cas login
2023-08-19 01:15:41 +08:00
9092cad631
feat: support forced binding MFA after login ( #1845 )
2023-05-17 01:13:13 +08:00
eb39e9e044
feat: add multi-factor authentication (MFA) feature ( #1800 )
...
* feat: add two-factor authentication interface and api
* merge
* feat: add Two-factor authentication accountItem and two-factor api in frontend
* feat: add basic 2fa setup UI
* rebase
* feat: finish the two-factor authentication
* rebase
* feat: support recover code
* chore: fix eslint error
* feat: support multiple sms account
* fix: client application login
* fix: lint
* Update authz.go
* Update mfa.go
* fix: support phone
* fix: i18n
* fix: i18n
* fix: support preferred mfa methods
---------
Co-authored-by: hsluoyz <hsluoyz@qq.com >
2023-05-05 21:23:59 +08:00
6d6cbc7e6f
feat: add dynamic mode for provider to enable verification code when the login password is wrong ( #1753 )
...
* fix: update webAuthnBufferDecode to support Base64URL for WebAuthn updates
* feat: enable verification code when the login password is wrong
* fix: only enable captcha when login in password
* fix: disable login error limits when captcha on
* fix: pass "enableCaptcha" as an optional param
* fix: change enbleCapctah to optional bool param
2023-04-22 16:16:25 +08:00
e21087aa50
feat: refactor reset password api and forgetPage.js ( #1601 )
2023-03-01 15:57:42 +08:00
37d1a73c0c
feat: encode redirectUri ( #1297 )
2022-11-15 19:05:59 +08:00
aa6a4dc74f
feat: support login by following wechat official account ( #1284 )
...
* show QRcode when click WeChat Icon
* update how to show qrcode
* handle wechat scan qrcode
* fix api problems
* fix url problems
* fix problems
* modify get frequency
* remove useless print
* fix:fix PR problems
* fix: fix PR problems
* fix:fix PR problem
* fix IMG load delay problems
* fix:fix provider problems
* fix test problems
* use gofumpt to fmt code
* fix:delete useless variables
* feat:add button for follow official account
* fix:fix review problems
* use gofumpt to fmt code
* fix:fix scantype problems
* fix Response problem
* use gofumpt to format code
2022-11-13 15:05:15 +08:00
d86f3c88c7
feat: support i18n in backend err messages ( #1232 )
...
* feat: support i18n in backend err messages
* use gofumpt to fmt code
* fix review problems
* support auto generate err message
* delete beego/i18n moudle
* fix Github action test problems
* fix review problems
* use gofumpt to format code
* use gofumpt to fmt code
2022-10-23 15:16:24 +08:00
9c48582e0c
feat: fix bugs in webauthn ( #1173 )
2022-10-01 11:10:55 +08:00
cd966116d4
feat: comma dangle
2022-08-06 23:54:56 +08:00
503d244166
feat(web): add lint ( #875 )
...
* feat: add lint
* feat: fix lint error
* chore: add ignore file
* chore: close indent
2022-07-10 15:45:55 +08:00
3cf1b990be
feat: support CAS with organizations and applications ( #621 )
2022-04-04 00:09:04 +08:00
db37f53d6c
Update license headers.
2022-02-13 23:39:27 +08:00
630b84f534
feat: add PKCE support ( #434 )
...
* feat: add PKCE support
Signed-off-by: Steve0x2a <stevesough@gmail.com >
* fix: error output when challenge is empty
Signed-off-by: Steve0x2a <stevesough@gmail.com >
2022-01-21 09:29:19 +08:00
98f6cc0085
feat: add OIDC feature support. ( #373 )
...
1. add nonce parameter.
2. add sub in userinfo endpoint.
Signed-off-by: 0x2a <stevesough@gmail.com >
2021-12-15 21:42:16 +08:00
370e835499
feat: support AuthnRequest in SAML ( #372 )
...
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com >
2021-12-15 21:38:00 +08:00
b73b9a65b6
feat: support third-party application to login with SAML rather than only Casdoor itself ( #350 )
...
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com >
2021-12-10 00:23:04 +08:00
113398c36b
feat: support SAML and test with aliyun IDaaS ( #346 )
...
* feat: support SAML and test with aliyun IDaaS
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com >
* refactor: refactor saml.go and router
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com >
* fix: add param to getSamlLogin()
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com >
* feat: add inputs to parse metadata automatically and show sp-acs-url, sp-entity-id
Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com >
2021-12-06 21:46:50 +08:00
629ae5a54b
Improve OAuth params.
2021-08-01 14:27:53 +08:00
1cb5ae54c5
feat: add "forget password" [front & backend] ( #75 )
...
* feat: add "forget password" [front & backend]
Signed-off-by: Weihao <1340908470@qq.com >
* fix: verification code can be sent even if no mobile phone or email is selected
refactor: forgetPassword -> forget; GetEmailAndPhoneByUsername -> GetEmailAndPhone; remove useless note
Signed-off-by: Weihao <1340908470@qq.com >
2021-06-02 13:39:01 +08:00
18806f07a8
Support cred auto-login.
2021-05-16 18:18:55 +08:00
7a0ed4ebaf
Replace "register" with "sign up".
2021-04-27 22:47:44 +08:00
36895801f0
Add Link API.
2021-04-19 01:14:41 +08:00
6774b0379c
Add Unlink API.
2021-04-18 23:14:46 +08:00
f5ceae901b
Support auto-login.
2021-03-28 16:53:49 +08:00
f89f454e0e
Add getOAuthGetParameters().
2021-03-20 16:51:10 +08:00
63a4066a8d
Return code for /api/login
2021-03-20 13:05:34 +08:00
80c47dd8c6
Add frontend /login/oauth
2021-03-20 11:34:04 +08:00
18c021b009
Merge two login functions.
2021-03-20 00:30:37 +08:00
d0e243fca3
Merge pull request #23 from Kininaru/master
...
feat: added avatar tailoring and uploading
2021-03-17 13:25:53 +08:00
1908f528c8
feat: added avatar tailoring and uploading
...
Signed-off-by: Kininaru <shiftregister233@outlook.com >
fixed type errors
Signed-off-by: Kininaru <shiftregister233@outlook.com >
fixed the wrong folder
Signed-off-by: Kininaru <shiftregister233@outlook.com >
rewrite login check logic, added unix time to avatar url
Signed-off-by: Kininaru <shiftregister233@outlook.com >
fixed a bug about strconv
Signed-off-by: Kininaru <shiftregister233@outlook.com >
supported oss
Signed-off-by: Kininaru <shiftregister233@outlook.com >
disabled oss provide qiniu
Signed-off-by: Kininaru <shiftregister233@outlook.com >
Fixed avatar url error
Signed-off-by: Kininaru <shiftregister233@outlook.com >
Fixed avatar length bug
Signed-off-by: Kininaru <shiftregister233@outlook.com >
Fixed avatar length bug
Signed-off-by: Kininaru <shiftregister233@outlook.com >
fixed oss.conf
Signed-off-by: Kininaru <shiftregister233@outlook.com >
Put uploading avatar into UserEditPage
Signed-off-by: Kininaru <shiftregister233@outlook.com >
removed avatar dir
Signed-off-by: Kininaru <shiftregister233@outlook.com >
removed avatar in main.go
Signed-off-by: Kininaru <shiftregister233@outlook.com >
Made CropperDiv a reusable component, and updated README for OSS config
Signed-off-by: Kininaru <shiftregister233@outlook.com >
Convert ts to js
Signed-off-by: Kininaru <shiftregister233@outlook.com >
removed ts
Signed-off-by: Kininaru <shiftregister233@outlook.com >
fix: set avatar link to string 255
Signed-off-by: Kininaru <shiftregister233@outlook.com >
fix: updated yarn lock
Signed-off-by: Kininaru <shiftregister233@outlook.com >
add: Casbin license
Signed-off-by: Kininaru <shiftregister233@outlook.com >
2021-03-17 13:19:23 +08:00
4a170d1d56
Change /api/auth/login to POST.
2021-03-15 00:49:16 +08:00
2a481d6a2e
Add frontend getOAuthCode() API.
2021-03-15 00:28:34 +08:00
4e22e0523d
Rename redirectUrl to redirectUri.
2021-03-15 00:01:21 +08:00
df5514ef31
Add getUsers() to Auth folder.
2021-02-15 23:28:25 +08:00
65eee22099
Check user under org.
2021-02-14 21:45:40 +08:00
b5b86262d6
Refactor the auth code.
2021-02-14 17:12:08 +08:00
9b45e5fe43
Add setAuthServerUrl().
2021-02-14 15:59:25 +08:00
277dec0af3
Define auth.ServerUrl.
2021-02-14 15:51:56 +08:00
20b70c323d
Rename to method.
2021-02-14 15:45:48 +08:00
faeb93494c
Improve auth folder.
2021-02-14 15:40:57 +08:00
