Business
/
AccountHub
2
0
Fork 2
Code Issues 3 Pull Requests Releases 3 Wiki Activity

Labels Milestones

New Issue

Add app passwords #15

Closed
opened 5 years ago by skylarmt · 0 comments
skylarmt commented 5 years ago
Owner

There is no good way to easily implement two-factor auth in app APIs that authenticate with a username and password.

We need to add a UI tool and database table for app passwords. It should work like Nextcloud's implementation, where a user can note what app/device the password is for, they see the password one time, and then in the future they can delete passwords if needed.

Modifying checkPassword() in User.lib.php should be enough to enable app passwords everywhere, although the web login flow should probably check for and refuse to accept app passwords.

There is no good way to easily implement two-factor auth in app APIs that authenticate with a username and password. We need to add a UI tool and database table for app passwords. It should work like Nextcloud's implementation, where a user can note what app/device the password is for, they see the password one time, and then in the future they can delete passwords if needed. Modifying `checkPassword()` in `User.lib.php` should be enough to enable app passwords everywhere, although the web login flow should probably check for and refuse to accept app passwords.
skylarmt added this to the Version 2.2 milestone 5 years ago
skylarmt self-assigned this 5 years ago
skylarmt added the
enhancement
 label 5 years ago
skylarmt referenced this issue from a commit 5 years ago
Add app passwords (close #15)
skylarmt closed this issue 5 years ago
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
master
V2_Rewrite
v1.0
1.0.1beta
1.0beta
v2.1
v2.0.1
v2.0
v1.0.1
Labels
Apply labels
Clear labels   
bug
   
duplicate
   
enhancement
   
help wanted
   
invalid
   
on hold
   
question
   
wontfix
No Label
bug
duplicate
enhancement
help wanted
invalid
on hold
question
wontfix
Milestone
Set milestone
Clear milestone
No items
No Milestone
Version 2.2
Assignees
Assign users
Clear assignees
No Assignees
skylarmt
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: Business/AccountHub#15
Write Preview
Loading…
Cancel
Save
There is no content yet.
Delete Branch '%!s(<nil>)'

Deleting a branch is permanent. It CANNOT be undone. Continue?

No
Yes