]>
Commit | Line | Data |
---|---|---|
35dc1b0b WB |
1 | rust-proxmox-tfa (4.0.2) stable; urgency=medium |
2 | ||
3 | * Reduce default TFA lockout time to an hour. | |
4 | ||
5 | * Include lockout status in tfa user list. | |
6 | ||
7 | -- Proxmox Support Team <support@proxmox.com> Mon, 05 Jun 2023 08:59:05 +0200 | |
8 | ||
9 | rust-proxmox-tfa (4.0.1) stable; urgency=medium | |
c5a9fa85 WB |
10 | |
11 | * Add api::methods::unlock_tfa | |
12 | ||
35dc1b0b | 13 | -- Proxmox Support Team <support@proxmox.com> Mon, 05 Jun 2023 08:58:34 +0200 |
c5a9fa85 | 14 | |
76ac1a39 WB |
15 | rust-proxmox-tfa (4.0.0-1) stable; urgency=medium |
16 | ||
17 | * Don't automatically drop an empty set of recovery keys, instead. | |
18 | This means that now if they are the only 2nd factor, once they're used up, | |
19 | login becomes impossible. | |
20 | ||
21 | * With no recovery keys present, the TfaChallenge now explicitly includes an | |
22 | empty set of recovery keys, so the client can see they are empty, rather | |
23 | than not configured. | |
24 | ||
25 | * If all 2nd factors are disabled, rather than an empty challenge which | |
26 | cannot be solved, act as if no 2nd factor existed, allowing the user to | |
27 | login normally. | |
28 | ||
29 | * Make failing to generate a webauthn or U2F challenge non-fatal: that is, if | |
30 | other 2nd factors are available it should still be possible to login with | |
31 | those. | |
32 | ||
33 | * Log errors to syslog which previously cancelled the login process. | |
34 | ||
35 | * TOTP: Add option to enable remembering and reject the last used TOTP codes | |
36 | of a user. | |
37 | ||
38 | * TOTP: add a failure limit after which TOTP will be completely blocked for a | |
39 | user until a recovery key is used. | |
40 | ||
41 | * There can now be alimit on TFA tries in general after which a user gets | |
42 | locked and and admin intervention is required. | |
43 | ||
44 | * add a 'types' feature exposing the TfaInfo, TfaType etc API types without | |
45 | exposing the entire API, so API clients can use those. | |
46 | ||
47 | -- Proxmox Support Team <support@proxmox.com> Thu, 20 Apr 2023 09:19:06 +0200 | |
48 | ||
bca9c6db WB |
49 | rust-proxmox-tfa (3.0.0-1) stable; urgency=medium |
50 | ||
51 | * Make `UserChallengeAccess` object-safe: | |
52 | - drop `Sized` requirement | |
53 | - make `save()` take `&mut self` | |
54 | ||
55 | * Drop `Clone` requirement on `OpenUserChallengeData` | |
56 | ||
57 | * Drop `Data` associated type from `OpenUserChallengeData`, make methods return | |
58 | `Box<dyn UserChallengeAccess>` instead | |
59 | ||
60 | -- Proxmox Support Team <support@proxmox.com> Thu, 02 Feb 2023 11:03:34 +0100 | |
61 | ||
df0d30a1 WB |
62 | rust-proxmox-tfa (2.1.0-1) stable; urgency=medium |
63 | ||
64 | * expose allow_subdomains property for webauthn, defaulting to true | |
65 | ||
66 | * include 'webauthn' property when deserializing a `TfaChallenge` object to | |
67 | make it reusable by clients | |
68 | ||
69 | * bump edition to 2021 | |
70 | ||
71 | -- Proxmox Support Team <support@proxmox.com> Mon, 25 Jul 2022 13:31:25 +0200 | |
72 | ||
6679005b WB |
73 | rust-proxmox-tfa (2.0.0-1) stable; urgency=medium |
74 | ||
75 | * add Webauthn::digest | |
76 | ||
77 | * let OriginUrl deref to its inner Url and add FromStr/TryFrom/Into<String> | |
78 | impls | |
79 | ||
80 | * make configured webauthn origin optional, allow users to pass an | |
81 | origin-override | |
82 | ||
83 | -- Proxmox Support Team <support@proxmox.com> Tue, 23 Nov 2021 16:19:16 +0100 | |
84 | ||
4b1cb9f9 WB |
85 | rust-proxmox-tfa (1.3.2-1) stable; urgency=medium |
86 | ||
87 | * fix instantiation of u2f context, use origin instead of always replacing | |
88 | it with the appid | |
89 | ||
90 | -- Proxmox Support Team <support@proxmox.com> Mon, 22 Nov 2021 13:26:22 +0100 | |
91 | ||
f3872d0a FG |
92 | rust-proxmox-tfa (1.3.1-1) stable; urgency=medium |
93 | ||
94 | * rebuild with base64 0.13 | |
95 | ||
96 | * bump webauthn-rs to 0.3 | |
97 | ||
98 | -- Proxmox Support Team <support@proxmox.com> Thu, 18 Nov 2021 12:59:59 +0100 | |
99 | ||
bbdfd8ed WB |
100 | rust-proxmox-tfa (1.3.0-1) stable; urgency=medium |
101 | ||
102 | * add tfa API entry points and optional api-type/schema generation | |
103 | ||
104 | -- Proxmox Support Team <support@proxmox.com> Wed, 17 Nov 2021 09:27:33 +0100 | |
105 | ||
e0df53e7 WB |
106 | rust-proxmox-tfa (1.2.0-1) stable; urgency=medium |
107 | ||
108 | * make u2f::AuthChallenge Clone + Debug | |
109 | * add version field to u2f::AuthChallenge | |
110 | ||
111 | -- Proxmox Support Team <support@proxmox.com> Tue, 02 Nov 2021 12:53:54 +0100 | |
112 | ||
bc38ff78 WB |
113 | rust-proxmox-tfa (1.1.0-1) stable; urgency=medium |
114 | ||
115 | * add Totp::digits getter | |
116 | ||
117 | -- Proxmox Support Team <support@proxmox.com> Fri, 29 Oct 2021 14:31:53 +0200 | |
118 | ||
77dc52c0 WB |
119 | rust-proxmox-tfa (1.0.0-1) stable; urgency=medium |
120 | ||
121 | * initial split out of `librust-proxmox-dev` | |
122 | ||
123 | -- Proxmox Support Team <support@proxmox.com> Mon, 04 Oct 2021 11:38:53 +0200 |