django-mfa2 icon indicating copy to clipboard operation
django-mfa2 copied to clipboard
verified publisher icon mkalioby

Version 3 Released

Open mkalioby opened this issue 1 year ago • 0 comments

Hello.

This an announcement that version 3 has been released with the following features

  • Updated to fido2==1.1.3
  • Removed: CBOR and exchange is done in JSON now.
  • Removed: simplejson package from dependencies.
  • Email OTP is always 6 numbers.
  • Better support for bootstrap 4 and 5.
  • Added: the following settings
    • MFA_FIDO2_RESIDENT_KEY: Defaults to Discouraged which was the old behaviour
    • MFA_FIDO2_AUTHENTICATOR_ATTACHMENT: If you like to have a PLATFORM Authenticator, Defaults to NONE
    • MFA_FIDO2_USER_VERIFICATION: If you need User Verification
    • MFA_FIDO2_ATTESTATION_PREFERENCE: If you like to have an Attention
    • MFA_ENFORCE_EMAIL_TOKEN: if you want the user to receive OTP by email without enrolling, if this the case, the system admins shall make sure that emails are valid.
    • MFA_SHOW_OTP_IN_EMAIL_SUBJECT: If you like to show the OTP in the email subject
    • MFA_OTP_EMAIL_SUBJECT: The subject of the email after the token allows placeholder '%s' for otp

This is a major cleanup and CSS adjustments so please test before deployment.

mkalioby avatar Jul 21 '24 17:07 mkalioby