django-mfa2
django-mfa2 copied to clipboard
mkalioby
A Django app that handles MFA, it supports TOTP, U2F, FIDO2 U2F (Webauthn), Email Token and Trusted Devices
Delete token used the wrong method to access formdata, I exchanged it to POST instead of GET and it fixed the error on submit
Hi just came across this package after been fiddling with [django-fido](https://github.com/CZ-NIC/django-fido) project, regarding the passwordless section in the README, it mentions about creating a cookie for the previously logged in...
TOTP shall be immue against repeat acts and against brute force acts.
``` ERROR 2020-06-13 19:08:23,133 228 log Internal Server Error: /mfa/u2f/verify Traceback (most recent call last): File "/usr/local/lib/python3.6/site-packages/django/db/backends/utils.py", line 86, in _execute return self.cursor.execute(sql, params) psycopg2.errors.UndefinedFunction: function json_extract(text, unknown) does not...
1. Line 72 template FIDO/recheck.html ``` }).then(function (response) {if (response.ok) return res = response.json()}).then(function (res) { if (res.status=="OK") { ``` 'res is undefined' My fix is to remove the extra...
In FIDO2.py there's wrong code raising exception in exception handling block  Current:  Expected: ``` return HttpResponse( simplejson.dumps({"status": "ERR", "message": str(exp)}), content_type="application/json", status=400 ) ``` Steps to reproduce: call...
Proof of concept, for testing purpose I added some random bytes to request body to check if exception handling is returning properly 400 status code and then for the same...
Pylint is a linter for python, there are several plugins for different frameworks and use cases such as the pylint-django plugin. Using pylint with pylint-django plugin I got the following...
Hi! I can't register a new Biometric Authentication in Firefox. Google Chrome and Safari are OK... Just Firefox. I have this error: This problem exists for registration only, the login...
