[DigitalPoint] Security & Passkeys

xF2 Add-on [DigitalPoint] Security & Passkeys 1.1.8

No permission to download
Overview Updates (9) History Discussion (9)
SNap!

SNap!

Collaborate
Collaborate
Registered
Joined
Mar 17, 2022
Messages
561
Points
253

Reputation:

SNap! submitted a new resource:

[DigitalPoint] Security & Passkeys - [DigitalPoint] Security & Passkeys

Features
  • Support for Passkeys(also known as WebAuthn / FIDO2 security keys) as two-step authentication (hardware devices such as YubiKeys are what large tech companies such as Google require their employees to use to keep their accounts secure).
    • Support for multiple keys per user
  • Option for Days to trust two-step verification. Now you can set it to whatever is appropriate for your site, vs it being hardcoded to 30 days in XenForo.
  • Users...
Click to expand...

Read more about this resource...
 
SNap!

SNap!

Collaborate
Collaborate
Registered
Joined
Mar 17, 2022
Messages
561
Points
253

Reputation:

SNap! updated [DigitalPoint] Security & Passkeys with a new update entry:

Adds option to encourage users to have more than one strong two-step option

  • If user has no Passkeys setup yet, the button to manage them is labeled 'Enable' rather than 'Manage'
  • Use a more specific selector when enabling/disabling the Submit button on the WebAuthn form
  • New option: Options -> User options -> Recommended strong two-step options (defaults to 2)
  • The user's two-step page will show a notice about not having enough strong two-step options if they have less than the number set under options (a reminder to users that they should have more...
Click to expand...

Read the rest of this update entry...
 
SNap!

SNap!

Collaborate
Collaborate
Registered
Joined
Mar 17, 2022
Messages
561
Points
253

Reputation:

SNap!

SNap!

Collaborate
Collaborate
Registered
Joined
Mar 17, 2022
Messages
561
Points
253

Reputation:

SNap!

SNap!

Collaborate
Collaborate
Registered
Joined
Mar 17, 2022
Messages
561
Points
253

Reputation:

SNap!

SNap!

Collaborate
Collaborate
Registered
Joined
Mar 17, 2022
Messages
561
Points
253

Reputation:

SNap! updated [DigitalPoint] Security & Passkeys with a new update entry:

Catch Passkey onboarding exception

I think this may have been the cause for a couple cases where an invalid Passkey record was saved to a user account. Previously, if an exception happened, it blindly accepted the null Passkey record as the new Passkey. If things went as expected (most cases) it wouldn't matter, but not everything always goes as expected. :)
  • Added dataList-row--noHover class so background color doesn't change when the mouse moves over the table of two-step options a user has
  • If an exception...
Click to expand...

Read the rest of this update entry...
 
SNap!

SNap!

Collaborate
Collaborate
Registered
Joined
Mar 17, 2022
Messages
561
Points
253

Reputation:

SNap! updated [DigitalPoint] Security & Passkeys with a new update entry:

Removed dependency on jQuery

  • Entropy for challenge changed from 192-bits to 768-bits
  • All JavaScript has been rewritten to be "native" (does not use jQuery) in preparation for removal of jQuery in XenForo 2.3.
If you aren't using XenForo 2.3, you don't need to upgrade (might be some unmeasurable speed increase [think nanoseconds] when running its JavaScript since it doesn't dip into...
Click to expand...

Read the rest of this update entry...
 
SNap!

SNap!

Collaborate
Collaborate
Registered
Joined
Mar 17, 2022
Messages
561
Points
253

Reputation:

SNap! updated [DigitalPoint] Security & Passkeys with a new update entry:

Minor update

If you use the Days to auto-extend two-step device trust setting, the addon will always set the tfa_trust cookie when the user_remember record is extended (since we can't see the cookie duration on the server-side). Before we were only setting the cookie if the user_tfa_trusted.trusted_until value changed.

This will make it work as expected even if you had something unrelated (like a different addon) altering the user_tfa_trusted.trusted_until value (where you had a short cookie duration...
Click to expand...

Read the rest of this update entry...
 
You must log in or register to reply here.
Top