Commit Graph

1640 Commits

Author SHA1 Message Date
Adrian Astles f0a1c10ec5 fix(auth): improve security key login flow.
- Fix login to verify password before showing security key prompt
- Add proper 2FA verification flow when deleting security keys

Previously, users with security keys would see the security key prompt
even if they entered an incorrect password. Now the password is verified
first. Additionally, security key deletion now properly handles 2FA
verification when enabled.
2025-07-07 17:48:23 +08:00
Burzhui34 08fed8fe93 Fix plural forms for Russian language
Change =1/other to one/other format to support proper grammar in Russian
2025-07-06 21:04:27 +03:00
Adrian Astles 813992141a Fix version mismatch with package-lock.json with package.json 2025-07-07 01:08:01 +08:00
Owen Schwartz f90129213e Merge pull request #1021 from fosrl/dependabot/github_actions/docker/setup-buildx-action-3
Bump docker/setup-buildx-action from 2 to 3
2025-07-06 10:07:50 -07:00
dependabot[bot] 838af30a38 Bump docker/setup-buildx-action from 2 to 3
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2 to 3.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-version: '3'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-06 17:02:46 +00:00
Owen Schwartz 13ff15311a Merge pull request #1019 from fosrl/dependabot/github_actions/actions/setup-go-5
Bump actions/setup-go from 4 to 5
2025-07-06 10:02:29 -07:00
Owen Schwartz 56e237c479 Merge pull request #1020 from fosrl/dependabot/github_actions/docker/login-action-3
Bump docker/login-action from 2 to 3
2025-07-06 10:01:49 -07:00
Owen Schwartz ff1e10a025 Merge pull request #1022 from fosrl/dependabot/github_actions/actions/checkout-4
Bump actions/checkout from 3 to 4
2025-07-06 10:00:51 -07:00
dependabot[bot] c259037dbf Bump actions/checkout from 3 to 4
Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-06 16:38:48 +00:00
dependabot[bot] 7b4878620f Bump docker/login-action from 2 to 3
Bumps [docker/login-action](https://github.com/docker/login-action) from 2 to 3.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-version: '3'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-06 16:38:42 +00:00
dependabot[bot] 38fd58c173 Bump actions/setup-go from 4 to 5
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-06 16:38:40 +00:00
Owen Schwartz d1185d43f7 Merge pull request #1018 from Lokowitz/update-dependabot
Update dependabot with github-actions
2025-07-06 09:38:02 -07:00
Adrian Astles a093c54b16 simplified security key management interface. 2025-07-06 20:41:26 +08:00
Marvin 30cc85b793 Update dependabot.yml 2025-07-06 13:12:43 +02:00
Adrian Astles 5009906385 renamed passkey to security key to stay aligned with the UI and other backend naming. 2025-07-05 21:51:31 +08:00
Adrian Astles 6ccc05b183 Update security key error handling and user feedback. Improve user guidance for security key interactions and Implement proper error handling for permission denials and timing issues. 2025-07-05 18:56:32 +08:00
Adrian Astles 3994b25a71 Merge branch 'dev' into feat/internal-user-passkey-support 2025-07-05 18:36:44 +08:00
Adrian Astles 5130071a60 improved security key management interface, also updated locales 2025-07-05 18:27:04 +08:00
Adrian Astles d5e67835aa improved WebAuthn error messages and session handling. Compatibility guidance in error states, and Improve user guidance for common authentication issues. 2025-07-05 16:52:56 +08:00
Adrian Astles bf8078ed66 enhance WebAuthn implementation and error handling. 2025-07-05 16:48:37 +08:00
Adrian Astles 1559a2a943 Fixed database dependencies. 2025-07-05 16:32:04 +08:00
Owen Schwartz e2d5301376 Merge pull request #990 from Lokowitz/fix-test
Fix test
2025-07-04 08:57:56 -07:00
Adrian Astles f31717145f feat(passkeys): Add password verification for passkey management
- Add password verification requirement when registering passkeys
- Add password verification requirement when deleting passkeys
- Add support for 2FA verification if enabled
- Add new delete confirmation dialog with password field
- Add recommendation message when only one passkey is registered
- Improve dialog styling and user experience
- Fix type issues with WebAuthn credential descriptors

Security: This change ensures that sensitive passkey operations require
password verification, similar to 2FA management, preventing unauthorized
modifications to authentication methods.
2025-07-03 22:57:29 +08:00
Adrian Astles db76558944 refactor: rename passkeyChallenge to webauthnChallenge
- Renamed table for consistency with webauthnCredentials
- Created migration script 1.8.1.ts for table rename
- Updated schema definitions in SQLite and PostgreSQL
- Maintains WebAuthn standard naming convention
2025-07-03 21:53:07 +08:00
Owen 1bcb027e05 Fix translation issue with targets 1.6.2 2025-07-01 21:04:40 -07:00
miloschwartz 719d75f8a6 fix pg migration for >1.6.0 2025-07-01 21:03:10 -07:00
Milo Schwartz 8c164c410d Merge pull request #994 from fosrl/dev
remove duplicate yargs
1.6.1
2025-06-30 18:03:54 -04:00
miloschwartz 8c6a4a90aa remove duplicate yargs 2025-06-30 15:03:09 -07:00
miloschwartz c679875273 add inset shadow 2025-06-30 14:18:17 -07:00
miloschwartz 1e5141c27c add newt version update available to table 2025-06-30 13:59:30 -07:00
Lokowitz e56330be47 modified: Makefile 2025-06-30 20:08:44 +00:00
Lokowitz 764a63d784 modified: Makefile 2025-06-30 20:04:51 +00:00
Lokowitz 6f280c4664 modified: package-lock.json 2025-06-30 20:03:22 +00:00
Lokowitz 9b29f38d10 modified: package-lock.json 2025-06-30 19:54:59 +00:00
Marvin 6b60410791 modified: package-lock.json 2025-06-30 19:42:25 +00:00
Marvin dffaceba6f modified: package-lock.json 2025-06-30 19:40:45 +00:00
miloschwartz 4ffdd6f74f clean up a few save buttons 2025-06-30 12:28:27 -07:00
Marvin 3499dd4f56 Update test.yml 2025-06-30 21:25:52 +02:00
Marvin 7004820326 Update Makefile 2025-06-30 21:25:16 +02:00
Marvin 24a17235ae Update test.yml 2025-06-30 21:24:32 +02:00
Milo Schwartz 66e8a4666c Merge pull request #988 from fosrl/dev
1.6.0
1.6.0
2025-06-30 14:31:30 -04:00
Owen 862dd6f0bc Update package-lock.json 2025-06-30 11:19:33 -07:00
miloschwartz 83afb23ac4 Merge branch 'main' into dev 2025-06-30 10:21:51 -07:00
miloschwartz a0381eb2c6 clean up ui pass 1 2025-06-30 09:34:14 -07:00
Owen 3b6a44e683 Merge branch 'dev' into clients-pops 2025-06-27 18:01:21 -04:00
Owen baee745d3c Fix orgId not in queries 2025-06-27 18:01:06 -04:00
miloschwartz cc930ebf53 prevent site name from wrapping 2025-06-27 16:46:03 -04:00
miloschwartz 809a135721 add refresh sites button 2025-06-27 16:43:14 -04:00
Owen 073c318f12 Improve bandiwdth update 2025-06-27 10:36:58 -04:00
miloschwartz 8f1cfd8037 toggle clients with feature flag 2025-06-26 15:09:16 -04:00