projects / proxmox.git / blame
| Commit | Line | Data |
|---|---|---|
| 35dc1b0b WB |
1 | rust-proxmox-tfa (4.0.2) stable; urgency=medium |
| 2 | ||
| 3 | * Reduce default TFA lockout time to an hour. | |
| 4 | ||
| 5 | * Include lockout status in tfa user list. | |
| 6 | ||
| 7 | -- Proxmox Support Team <support@proxmox.com> Mon, 05 Jun 2023 08:59:05 +0200 | |
| 8 | ||
| 9 | rust-proxmox-tfa (4.0.1) stable; urgency=medium | |
| c5a9fa85 WB |
10 | |
| 11 | * Add api::methods::unlock_tfa | |
| 12 | ||
| 35dc1b0b | 13 | -- Proxmox Support Team <support@proxmox.com> Mon, 05 Jun 2023 08:58:34 +0200 |
| c5a9fa85 | 14 | |
| 76ac1a39 WB |
15 | rust-proxmox-tfa (4.0.0-1) stable; urgency=medium |
| 16 | ||
| 17 | * Don't automatically drop an empty set of recovery keys, instead. | |
| 18 | This means that now if they are the only 2nd factor, once they're used up, | |
| 19 | login becomes impossible. | |
| 20 | ||
| 21 | * With no recovery keys present, the TfaChallenge now explicitly includes an | |
| 22 | empty set of recovery keys, so the client can see they are empty, rather | |
| 23 | than not configured. | |
| 24 | ||
| 25 | * If all 2nd factors are disabled, rather than an empty challenge which | |
| 26 | cannot be solved, act as if no 2nd factor existed, allowing the user to | |
| 27 | login normally. | |
| 28 | ||
| 29 | * Make failing to generate a webauthn or U2F challenge non-fatal: that is, if | |
| 30 | other 2nd factors are available it should still be possible to login with | |
| 31 | those. | |
| 32 | ||
| 33 | * Log errors to syslog which previously cancelled the login process. | |
| 34 | ||
| 35 | * TOTP: Add option to enable remembering and reject the last used TOTP codes | |
| 36 | of a user. | |
| 37 | ||
| 38 | * TOTP: add a failure limit after which TOTP will be completely blocked for a | |
| 39 | user until a recovery key is used. | |
| 40 | ||
| 41 | * There can now be alimit on TFA tries in general after which a user gets | |
| 42 | locked and and admin intervention is required. | |
| 43 | ||
| 44 | * add a 'types' feature exposing the TfaInfo, TfaType etc API types without | |
| 45 | exposing the entire API, so API clients can use those. | |
| 46 | ||
| 47 | -- Proxmox Support Team <support@proxmox.com> Thu, 20 Apr 2023 09:19:06 +0200 | |
| 48 | ||
| bca9c6db WB |
49 | rust-proxmox-tfa (3.0.0-1) stable; urgency=medium |
| 50 | ||
| 51 | * Make `UserChallengeAccess` object-safe: | |
| 52 | - drop `Sized` requirement | |
| 53 | - make `save()` take `&mut self` | |
| 54 | ||
| 55 | * Drop `Clone` requirement on `OpenUserChallengeData` | |
| 56 | ||
| 57 | * Drop `Data` associated type from `OpenUserChallengeData`, make methods return | |
| 58 | `Box<dyn UserChallengeAccess>` instead | |
| 59 | ||
| 60 | -- Proxmox Support Team <support@proxmox.com> Thu, 02 Feb 2023 11:03:34 +0100 | |
| 61 | ||
| df0d30a1 WB |
62 | rust-proxmox-tfa (2.1.0-1) stable; urgency=medium |
| 63 | ||
| 64 | * expose allow_subdomains property for webauthn, defaulting to true | |
| 65 | ||
| 66 | * include 'webauthn' property when deserializing a `TfaChallenge` object to | |
| 67 | make it reusable by clients | |
| 68 | ||
| 69 | * bump edition to 2021 | |
| 70 | ||
| 71 | -- Proxmox Support Team <support@proxmox.com> Mon, 25 Jul 2022 13:31:25 +0200 | |
| 72 | ||
| 6679005b WB |
73 | rust-proxmox-tfa (2.0.0-1) stable; urgency=medium |
| 74 | ||
| 75 | * add Webauthn::digest | |
| 76 | ||
| 77 | * let OriginUrl deref to its inner Url and add FromStr/TryFrom/Into<String> | |
| 78 | impls | |
| 79 | ||
| 80 | * make configured webauthn origin optional, allow users to pass an | |
| 81 | origin-override | |
| 82 | ||
| 83 | -- Proxmox Support Team <support@proxmox.com> Tue, 23 Nov 2021 16:19:16 +0100 | |
| 84 | ||
| 4b1cb9f9 WB |
85 | rust-proxmox-tfa (1.3.2-1) stable; urgency=medium |
| 86 | ||
| 87 | * fix instantiation of u2f context, use origin instead of always replacing | |
| 88 | it with the appid | |
| 89 | ||
| 90 | -- Proxmox Support Team <support@proxmox.com> Mon, 22 Nov 2021 13:26:22 +0100 | |
| 91 | ||
| f3872d0a FG |
92 | rust-proxmox-tfa (1.3.1-1) stable; urgency=medium |
| 93 | ||
| 94 | * rebuild with base64 0.13 | |
| 95 | ||
| 96 | * bump webauthn-rs to 0.3 | |
| 97 | ||
| 98 | -- Proxmox Support Team <support@proxmox.com> Thu, 18 Nov 2021 12:59:59 +0100 | |
| 99 | ||
| bbdfd8ed WB |
100 | rust-proxmox-tfa (1.3.0-1) stable; urgency=medium |
| 101 | ||
| 102 | * add tfa API entry points and optional api-type/schema generation | |
| 103 | ||
| 104 | -- Proxmox Support Team <support@proxmox.com> Wed, 17 Nov 2021 09:27:33 +0100 | |
| 105 | ||
| e0df53e7 WB |
106 | rust-proxmox-tfa (1.2.0-1) stable; urgency=medium |
| 107 | ||
| 108 | * make u2f::AuthChallenge Clone + Debug | |
| 109 | * add version field to u2f::AuthChallenge | |
| 110 | ||
| 111 | -- Proxmox Support Team <support@proxmox.com> Tue, 02 Nov 2021 12:53:54 +0100 | |
| 112 | ||
| bc38ff78 WB |
113 | rust-proxmox-tfa (1.1.0-1) stable; urgency=medium |
| 114 | ||
| 115 | * add Totp::digits getter | |
| 116 | ||
| 117 | -- Proxmox Support Team <support@proxmox.com> Fri, 29 Oct 2021 14:31:53 +0200 | |
| 118 | ||
| 77dc52c0 WB |
119 | rust-proxmox-tfa (1.0.0-1) stable; urgency=medium |
| 120 | ||
| 121 | * initial split out of `librust-proxmox-dev` | |
| 122 | ||
| 123 | -- Proxmox Support Team <support@proxmox.com> Mon, 04 Oct 2021 11:38:53 +0200 |