Two factor authentication support#630
Conversation
Signed-off-by: Andrew <write@imaginarycode.com>
lunny
added
type/feature
|
Looking good so far. I'll fetch and checkout this branch later. Merging this will be awesome! |
tboerger
added
the
lgtm/need 2
|
@minecrafter Is this ready for review? not WIP? |
cmd/web.go
Outdated
| m.Get("/2fa", user.ShowTwofa) | ||
| m.Post("/2fa", bindIgnErr(auth.TwofaAuthForm{}), user.TwofaPost) | ||
| m.Get("/2fa_scratch", user.TwofaScratch) | ||
| m.Post("/2fa_scratch", bindIgnErr(auth.TwofaScratchAuthForm{}), user.TwofaScratchPost) |
There was a problem hiding this comment.
Since there are many endpoints it might be better to use the following structure and change 2fa_scratch to be 2fa/scratch.
m.Group("/2fa", func() {
m.Get("", user.ShowTwofa)
[...]
})
cmd/web.go
Outdated
| m.Post("/2fa/regenerate_scratch", user.SettingsTwofaRegenerateScratch) | ||
| m.Post("/2fa/disable", user.SettingsTwofaDisable) | ||
| m.Get("/2fa/enroll", user.SettingsTwofaEnroll) | ||
| m.Post("/2fa/enroll", bindIgnErr(auth.TwofaAuthForm{}), user.SettingsTwofaEnrollPost) |
|
@lunny It's a WIP still. I will probably finish it up this week. |
|
Have some time to work on this - going to be improving the code and finalizing everything. |
|
Ready to get this pull request reviewed. |
|
LGTM, Good Job! |
tboerger
added
lgtm/need 1
routers/user/auth.go
Outdated
|
|
||
| handleSignInFull(ctx, u, remember, false) | ||
| ctx.Flash.Info(ctx.Tr("auth.twofa_scratch_used")) | ||
| ctx.Redirect(setting.AppSubURL + "/user/settings/twofa") |
|
I would prefer if you changed "twofa" to "twofactor" instead, it makes it easier to read since we can't do "2fa" or "TwoFA" :) |
|
Just tried it locally and it seems to be working just fine. |
tboerger
added
lgtm/done
|
Thanks! 👍 @bkcsoft I might consider doing so, but otherwise it works well so it's more of a cosmetic issue. |
|
@minecrafter can't wait to merge it. When would you like to push a commit for @bkcsoft's advice? |
models/twofactor.go
Outdated
| // TwoFactor represents a two-factor authentication token. | ||
| type TwoFactor struct { | ||
| ID int64 `xorm:"pk autoincr"` | ||
| UID int64 `xorm:"UNIQUE INDEX"` |
There was a problem hiding this comment.
It's no need for both UNIQUE and INDEX, chose one.
|
Let L-G-T-M work |
|
Thanks! |
|
No problem! 😄 |
7 participants
This PR is still a work in progress and therefore I do not recommend pulling this just yet.This adds two-factor authentication support to Gitea, resolving #179. As I'm new to Gitea and fairly new to Go, I'm looking for friendly input.
There are a few issues that need to be looked at: