revi-archive/phorge-phorge
1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2024-12-11 16:16:14 +01:00
Code Issues Releases Wiki Activity
phorge-phorge/src/applications/auth/query
History
epriestley d22495a820 Make external link/refresh use provider IDs, switch external account MFA to one-shot 
Summary:
Depends on D20113. Ref T6703. Continue moving toward a future where multiple copies of a given type of provider may exist.

Switch MFA from session-MFA at the start to one-shot MFA at the actual link action.

Add one-shot MFA to the unlink action. This theoretically prevents an attacker from unlinking an account while you're getting coffee, registering `alIce` which they control, adding a copy of your profile picture, and then trying to trick you into writing a private note with your personal secrets or something.

Test Plan: Linked and unlinked accounts. Refreshed account. Unlinked, then registered a new account. Unlinked, then relinked to my old account.

Reviewers: amckinley

Reviewed By: amckinley

Maniphest Tasks: T6703

Differential Revision: https://secure.phabricator.com/D20117
2019-02-12 15:18:08 -08:00
..
PhabricatorAuthChallengeQuery.php Track MFA "challenges" so we can bind challenges to sessions and support SMS and other push MFA 2018-12-17 07:00:21 -08:00
PhabricatorAuthContactNumberQuery.php Give "MetaMTAMail" a "message type" and support SMS 2019-01-23 14:05:46 -08:00
PhabricatorAuthContactNumberTransactionQuery.php Add "Contact Numbers" so we can send users SMS mesages 2019-01-23 13:39:56 -08:00
PhabricatorAuthFactorConfigQuery.php Allow MFA providers to be deprecated or disabled 2019-01-28 09:29:27 -08:00
PhabricatorAuthFactorProviderQuery.php Convert user MFA factors to point at configurable "MFA Providers", not raw "MFA Factors" 2019-01-23 13:37:43 -08:00
PhabricatorAuthFactorProviderTransactionQuery.php Add a skeleton for configurable MFA provider types 2019-01-16 12:27:23 -08:00
PhabricatorAuthInviteQuery.php Update many Phabricator queries for new %Q query semantics 2018-11-15 03:48:10 -08:00
PhabricatorAuthInviteSearchEngine.php Reduce application search engine results list for Dashboards 2017-02-22 12:42:43 -08:00
PhabricatorAuthMessageQuery.php Add "Auth Messages" to support customizing onboarding/welcome flows 2019-01-18 19:53:19 -08:00
PhabricatorAuthMessageTransactionQuery.php Add "Auth Messages" to support customizing onboarding/welcome flows 2019-01-18 19:53:19 -08:00
PhabricatorAuthPasswordQuery.php Add a more modern object for storing password hashes 2018-01-22 15:35:28 -08:00
PhabricatorAuthPasswordTransactionQuery.php Add test coverage to the PasswordEngine upgrade workflow and fix a few bugs 2018-01-23 10:55:35 -08:00
PhabricatorAuthProviderConfigQuery.php Move the Auth Provider edit flow toward a more modern layout 2019-02-05 14:19:26 -08:00
PhabricatorAuthProviderConfigTransactionQuery.php Use application PHIDs for application transactions 2013-07-29 12:04:15 -07:00
PhabricatorAuthSessionQuery.php Upgrade sessions digests to HMAC256, retaining compatibility with old digests 2018-12-13 16:15:38 -08:00
PhabricatorAuthSSHKeyQuery.php Continue making application fixes to Phabricator for changes to %Q semantics 2018-11-15 03:50:02 -08:00
PhabricatorAuthSSHKeySearchEngine.php Add ViewController and SearchEngine for SSH Public Keys 2016-05-19 09:48:46 -07:00
PhabricatorAuthSSHKeyTransactionQuery.php Use transactions to apply web UI SSH key edits 2016-05-19 15:00:18 -07:00
PhabricatorAuthTemporaryTokenQuery.php Make temporary token storage/schema more flexible 2016-03-16 09:33:38 -07:00
PhabricatorExternalAccountQuery.php Make external link/refresh use provider IDs, switch external account MFA to one-shot 2019-02-12 15:18:08 -08:00