Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

2fa, optional to users, required for Roles with sensitive access #355

Open
dpslwk opened this issue Jan 19, 2019 · 0 comments · May be fixed by #386
Open

2fa, optional to users, required for Roles with sensitive access #355

dpslwk opened this issue Jan 19, 2019 · 0 comments · May be fixed by #386
Assignees
@dpslwk
Labels
PR open
Milestone
Base System

Comments

@dpslwk
Copy link
Member

dpslwk commented Jan 19, 2019

Use google 2fa TOTP/HTOP
Allow user to set this up if they want, and regen secrete, disable it
on login if setup redirect to a new page to submit the OTP

so new col on user to store key

new flag col on Role
role requires user to have 2fa setup
dont allow user to be added to a role until they have 2fa working
dont allow user with role to disable 2fa

add a array to config/hms
with list of permission that requires roles to have 2fa
when role->addPermission() check the list and kick back if not allowed (might need to do this in the role manager?? or a custom validation?)
@dpslwk dpslwk added this to the Base System milestone Jan 19, 2019
@dpslwk dpslwk self-assigned this Jan 19, 2019
@dpslwk dpslwk linked a pull request May 20, 2019 that will close this issue
Draft
5 tasks
dpslwk added a commit that referenced this issue May 21, 2019
@dpslwk
Merge branch 'master' into #355-2fa
d28fca0 
# Conflicts:
#	app/Http/Controllers/Api/SearchController.php
#	resources/js/select2.js
#	routes/web.php
@dpslwk dpslwk added the PR open label May 21, 2019
dpslwk added a commit that referenced this issue May 22, 2019
@dpslwk
Merge branch 'master' into #355-2fa
eb0b76b 
# Conflicts:
#	resources/views/layouts/app.blade.php
dpslwk added a commit that referenced this issue May 25, 2019
@dpslwk
Merge branch 'master' into #355-2fa
f72c759 
# Conflicts:
#	app/HMS/Entities/User.php
#	app/Http/Kernel.php
dpslwk added a commit that referenced this issue Jul 7, 2019
@dpslwk
Merge branch 'master' into #355-2fa
d3f66ae 
# Conflicts:
#	app/HMS/User/ProfileManager.php
#	app/HMS/User/UserManager.php
#	app/Http/Controllers/MembershipController.php
#	app/Http/Kernel.php
#	resources/views/layouts/navbar.blade.php
#	routes/web.php
dpslwk added a commit that referenced this issue Jul 8, 2019
@dpslwk
Merge branch 'release' into #355-2fa
f7265cf 
# Conflicts:
#	routes/console.php
#	routes/web.php
dpslwk added a commit that referenced this issue Aug 13, 2019
@dpslwk
Merge branch 'master' into #355-2fa
3b74631 
# Conflicts:
#	Vagrantfile
#	composer.json
#	composer.lock
#	resources/views/layouts/navbar.blade.php
#	routes/console.php
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dpslwk dpslwk

Labels
PR open
Projects
None yet
Milestone
Base System
Development

Successfully merging a pull request may close this issue.

2fa: Initial setup NottingHack/hms2
1 participant
@dpslwk