pangolin_mirror/pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2026-02-13 16:36:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,634 Commits 27 Branches 93 Tags
5f75813e84ea05078ca29ea191755d0bd97e2c7f
Commit Graph

564 Commits

Author SHA1 Message Date
Adrian Astles
f0a1c10ec5 fix(auth): improve security key login flow. 
- Fix login to verify password before showing security key prompt
- Add proper 2FA verification flow when deleting security keys

Previously, users with security keys would see the security key prompt
even if they entered an incorrect password. Now the password is verified
first. Additionally, security key deletion now properly handles 2FA
verification when enabled.
 2025-07-07 17:48:23 +08:00
Adrian Astles
5009906385 renamed passkey to security key to stay aligned with the UI and other backend naming. 2025-07-05 21:51:31 +08:00
Adrian Astles
6ccc05b183 Update security key error handling and user feedback. Improve user guidance for security key interactions and Implement proper error handling for permission denials and timing issues. 2025-07-05 18:56:32 +08:00
Adrian Astles
5130071a60 improved security key management interface, also updated locales 2025-07-05 18:27:04 +08:00
Adrian Astles
d5e67835aa improved WebAuthn error messages and session handling. Compatibility guidance in error states, and Improve user guidance for common authentication issues. 2025-07-05 16:52:56 +08:00
Adrian Astles
bf8078ed66 enhance WebAuthn implementation and error handling. 2025-07-05 16:48:37 +08:00
Adrian Astles
f31717145f feat(passkeys): Add password verification for passkey management 
- Add password verification requirement when registering passkeys
- Add password verification requirement when deleting passkeys
- Add support for 2FA verification if enabled
- Add new delete confirmation dialog with password field
- Add recommendation message when only one passkey is registered
- Improve dialog styling and user experience
- Fix type issues with WebAuthn credential descriptors

Security: This change ensures that sensitive passkey operations require
password verification, similar to 2FA management, preventing unauthorized
modifications to authentication methods.
 2025-07-03 22:57:29 +08:00
Adrian Astles
db76558944 refactor: rename passkeyChallenge to webauthnChallenge 
- Renamed table for consistency with webauthnCredentials
- Created migration script 1.8.1.ts for table rename
- Updated schema definitions in SQLite and PostgreSQL
- Maintains WebAuthn standard naming convention
 2025-07-03 21:53:07 +08:00
miloschwartz
1e5141c27c add newt version update available to table 2025-06-30 13:59:30 -07:00
miloschwartz
a0381eb2c6 clean up ui pass 1 2025-06-30 09:34:14 -07:00
Owen
3b6a44e683 Merge branch 'dev' into clients-pops 2025-06-27 18:01:21 -04:00
Owen
baee745d3c Fix orgId not in queries 2025-06-27 18:01:06 -04:00
Owen
073c318f12 Improve bandiwdth update 2025-06-27 10:36:58 -04:00
miloschwartz
8f1cfd8037 toggle clients with feature flag 2025-06-26 15:09:16 -04:00
miloschwartz
7bf9cccbf6 show account already exists if email not verified 2025-06-25 16:54:33 -04:00
miloschwartz
9bb4d8b2a3 store last visited org in cookie 2025-06-24 14:54:07 -04:00
miloschwartz
fb5010a2b5 use redis store in rate limiters 2025-06-22 19:55:05 -04:00
miloschwartz
0e87b6e48b Merge branch 'dev' into clients-pops 2025-06-22 17:50:39 -04:00
miloschwartz
d45443258b update selection algorithm 2025-06-22 17:19:40 -04:00
miloschwartz
317a15b649 Merge branch 'dev' into clients-pops 2025-06-20 16:34:49 -04:00
miloschwartz
d03f45279c remove server admin from config and add onboarding ui 2025-06-19 22:11:05 -04:00
Owen
2fd8134a57 Dont go over capacity or accept no capacity 2025-06-19 18:04:52 -04:00
miloschwartz
494b54ac32 add redis rate limiter 2025-06-19 16:58:03 -04:00
Owen
377eb2b851 Handle version in db 2025-06-19 16:40:20 -04:00
Owen
bd7e96b8af Send version and try to be reverse compatible 2025-06-19 16:40:02 -04:00
miloschwartz
acf25e8ad7 Merge branch 'dev' into clients-pops 2025-06-19 16:34:06 -04:00
miloschwartz
f300838f8e add migration for 1.6.0 2025-06-19 15:58:05 -04:00
miloschwartz
1bf2e23f5d make username lowercase 2025-06-19 15:41:49 -04:00
Owen
a0ac757982 Exit node filtering 2025-06-19 09:30:02 -04:00
miloschwartz
c043912f94 fix bug preventing creating raw resources with api key closes #920 2025-06-18 16:42:07 -04:00
miloschwartz
3b3d7b134a mark exit node as was previously connected 2025-06-18 15:57:45 -04:00
Owen
cdfeb2ff86 Filter by exit node 2025-06-17 17:00:11 -04:00
miloschwartz
7fd1fb89f1 disable local and wg sites with flag 2025-06-17 16:35:05 -04:00
miloschwartz
32e54d0f94 hide raw resources ui if disabled 2025-06-17 16:23:33 -04:00
miloschwartz
21e9edd201 move max connections from config to db 2025-06-17 15:53:57 -04:00
miloschwartz
a0001aaa74 add max connection and weight calculation 2025-06-17 15:51:32 -04:00
miloschwartz
753307bb99 use new exit node info 2025-06-16 22:07:03 -04:00
Owen
970feb75dd Add priority 100 2025-06-16 17:41:40 -04:00
miloschwartz
08556789f9 add exit node name 2025-06-16 17:32:38 -04:00
Owen
8c42dee5de Remove unneeded clientType 2025-06-15 18:18:28 -04:00
miloschwartz
7bbb687047 make exit node name backwards compatible 2025-06-15 18:02:31 -04:00
miloschwartz
b39708700d add exit node name and fix db import issues 2025-06-15 17:49:27 -04:00
miloschwartz
3e60a2bd6f Merge branch 'dev' into clients-pops 2025-06-15 13:25:21 -04:00
miloschwartz
83c10166e2 Merge branch 'redis' into clients-pops 2025-06-15 11:54:55 -04:00
Owen
ddd292422b Make error more clear 
From #911
 2025-06-15 10:53:03 -04:00
miloschwartz
21f4623e3e Merge branch 'dev' into redis 2025-06-13 13:05:24 -04:00
Owen
9a2022a4fe Working on new exit node picking 2025-06-11 09:13:38 -04:00
Owen
0537992603 Merge branch 'dev' into clients-pops 2025-06-10 13:00:20 -04:00
Thijs van Loef
cbca88f76b fix semi colons 2025-06-09 23:52:16 +02:00
miloschwartz
f0cb65f65c dont import db in nextjs 2025-06-05 14:44:34 -04:00