Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[v15] Add UserVerification capabilities to LoginFlow #38487

Merged
merged 1 commit into from
Feb 21, 2024
Merged

[v15] Add UserVerification capabilities to LoginFlow #38487

merged 1 commit into from
Feb 21, 2024

Conversation

codingllama
Copy link
Contributor

Backport #37963 to branch/v15.

Add user verification capabilities to "logged in" challenges, as in those issued by wanlib.LoginFlow.

We take advantage of mfav1.ChallengeExtensions by adding a user verification option that is orthogonal to the challenge scope, so that challenges may be issued with or without UV requirements based on external factors (like the user actually having a password).

LoginFlow is used for those challenges, instead of PasswordlessFlow, as the former already works with the logged in user, issues challenges with a larger timeout and has all the correct parameters in its API. PasswordlessFlow is meant only for discoverable logins, as in logins where the user is not yet known.

This is related to and meant to facilitate RFD 0159 - Password Status.

@codingllama
Add UserVerification capabilities to LoginFlow (#37963)
54ffe0b 
* Disallow the passwordless scope on regular LoginFlow

* fix: Use the correct `t` for assertions

* nit: Fix test target name

* Add UserVerificationRequirement to ChallengeExtensions

* Update generated protos

* Add user verification support to LoginFlow

* nit: Add my scopes TODO

* Change user_verification_requirement to a string

* nit: Use slices.Clone

* Tweak disallowed scope error message
@codingllama codingllama requested a review from bl-nero February 21, 2024 12:51
@github-actions github-actions bot requested a review from rosstimothy February 21, 2024 12:51
@github-actions GitHub Actions
Copy link

The PR changelog entry failed validation: Changelog entry not found in the PR body. Please add a "no-changelog" label to the PR, or changelog lines starting with changelog: followed by the changelog entries for the PR.

@codingllama codingllama added the no-changelog Indicates that a PR does not require a changelog entry label Feb 21, 2024
@codingllama codingllama added this pull request to the merge queue Feb 21, 2024
Merged via the queue into branch/v15 with commit 70c5407 Feb 21, 2024
37 of 38 checks passed
@codingllama codingllama deleted the codingllama/backport/37963-v15 branch February 21, 2024 15:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rosstimothy rosstimothy rosstimothy approved these changes

@bl-nero bl-nero bl-nero approved these changes

Assignees
No one assigned
Labels
backport no-changelog Indicates that a PR does not require a changelog entry size/md
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@codingllama @bl-nero @rosstimothy