Commit Graph

59 Commits

Author SHA1 Message Date
d11n
34af74b288
Apply URL changes from code review
Co-authored-by: Andrew Camilleri <evilkukka@gmail.com>

Update BTCPayServer/Controllers/AccountController.cs

Co-authored-by: Andrew Camilleri <evilkukka@gmail.com>

Update BTCPayServer/Controllers/AccountController.cs

Co-authored-by: Andrew Camilleri <evilkukka@gmail.com>

Update BTCPayServer/Controllers/AccountController.cs

Co-authored-by: Andrew Camilleri <evilkukka@gmail.com>

Update BTCPayServer/Controllers/AccountController.cs

Co-authored-by: Andrew Camilleri <evilkukka@gmail.com>

Update BTCPayServer/Controllers/AccountController.cs

Co-authored-by: Andrew Camilleri <evilkukka@gmail.com>

Update BTCPayServer/Controllers/AccountController.cs

Co-authored-by: Andrew Camilleri <evilkukka@gmail.com>
2021-01-28 12:33:12 +01:00
Dennis Reimann
98a1b0da71
Update public account URLs
- /Account/Login -> /login
- /Account/Register -> /register
- /Account/ForgotPassword -> /forgot-password
2021-01-28 10:08:22 +01:00
Kukks
179520a211 Plugins: Allow creation of independent DbContexts
This allows plugins to create custom dbcontexts, which would be namespaced in the scheme with a prefix. Migrations are supported too and the table would be prefixed too
2020-11-18 12:27:26 +01:00
Kukks
2a32b05df1 fix forgot password
If Email verification is turned off but you requested a forgot password form, it would ignore the request internally. Seems like it has been this way since the beginning
2020-10-17 09:25:48 +02:00
nicolas.dorier
51a072808f
If a password fail to be reset by mail, show proper error (fix #1986) 2020-10-15 15:36:42 +09:00
Kukks
3d2b4cbfa8 Add Created date to user, add verified column in list and make user list use same model as modern lists 2020-10-05 13:00:15 +02:00
Kukks
371b33a2e1 Allow admins to invite new users
* This refactors the email sending so that all the logic related to users and emails are now contained in one location.
* The Reset password screen has been updated from its ugly plain self to use the same layout as the login.
* An admin can now create a new account without specifying a password. A link is generated that can be given to the intended user to configure the password. If emails are configured, it also sends an email
* An admin can now create accounts that still require the user to verify their if the setting is enabled from the server settings. A link is generated that can be given to the intended user to configure the password. If emails are configured, it also sends an email.
* The above features can be used in conjunction: An email will have to verify their email through a link. Once verified, the user is redirected to setting the password.
* When an email has been verified OR a password has been set, users are now redirected to the login page with the email filled in and a success status message shown instead of a dedicated thank you page.
2020-09-16 08:54:24 +02:00
rockstardev
16eedf4153 Deducing if to perform update check from update url configuration 2020-08-03 03:17:04 -05:00
rockstardev
ce87d2e45c Making use of options to initalize update check on first admin registration 2020-08-03 03:17:04 -05:00
rockstardev
1b3e40fd70 Fixing typo 2020-08-03 03:17:04 -05:00
Dennis Reimann
9b9cb83a06
Dissect register and create user 2020-07-13 17:32:18 +02:00
rockstardev
f88c02cccd Removing unused usings, readonly fields where possible 2020-06-28 22:07:48 -05:00
rockstardev
b6c7af32de Cleaning up bom from cs files 2020-06-28 21:44:35 -05:00
nicolas.dorier
51514252b6
Run dotnet format 2020-06-28 17:55:27 +09:00
Andrew Camilleri
d47e225dce
Fix email sending on registration crash (#1454) 2020-04-10 15:59:39 +09:00
nicolas.dorier
eac33d494a
Add logs 2020-03-19 13:34:11 +09:00
nicolas.dorier
e50e3f662d
Can create user without authentication if there is no admin 2020-03-18 23:10:15 +09:00
Kukks
e99767c7e2 Greenfield API: Create User
Slightly big PR because I started refactoring to reduce code duplication between the UI based business logic and the api one.
2020-03-17 08:21:27 +01:00
rockstardev
56380a5fb3 Formatting code 2020-02-28 23:15:14 -06:00
rockstardev
a303e793b4 Fixing CanCreateApiKeys test admin user check 2020-02-28 23:15:06 -06:00
Kukks
389695751f add u2f tests 2020-01-14 11:47:24 +01:00
Kukks
dad3039c06 throw on non-u2f specific errors 2020-01-14 09:49:51 +01:00
Kukks
22ffd48cd4 refactor 2019-11-16 08:57:16 +01:00
Kukks
f1cef81d76 Do not allow login or register over an insecure connection 2019-11-15 12:39:17 +01:00
Umar Bolatov
dfdb99165b
Vary page layout for registering new accounts
address #1138
2019-11-09 21:24:19 -08:00
nicolas.dorier
55dd8da284
Redirect first run to register, redirect unlogged to login 2019-11-06 15:19:14 +09:00
nicolas.dorier
d66e8f2d13
Removing obsolete StatusMessage 2019-10-31 15:19:38 +09:00
nicolas.dorier
aad586232c
Refactor StatusMessage and remove ExternalLogin 2019-10-31 14:11:33 +09:00
nicolas.dorier
281a2461ad
Refactor authorizations 2019-10-14 00:24:41 +09:00
rockstardev
7282199c31 Cleanup U2F namespace to correspond to folder path 2019-10-02 12:32:41 -05:00
nicolas.dorier
f257f9f91d
[Refactor] Move SQL classes in their own assembly 2019-08-30 18:22:13 +09:00
Nicolas Dorier
be5597085b
Use Safe.Raw and Safe.Json instead of Html.Raw and the JsonHelper, move sanitization at the View level (#960) 2019-08-10 14:05:11 +09:00
nicolas.dorier
be0285155f
Do not redirect from login page if there is a returnUrl. 2019-07-15 17:18:30 +09:00
nicolas.dorier
d176a16caa
fix typo 2019-07-14 22:25:43 +09:00
nicolas.dorier
fd4a27c1a3
When logged in, the URL /account/login is still accessible (Fix https://github.com/btcpayserver/btcpayserver/issues/916) 2019-07-14 22:16:23 +09:00
nicolas.dorier
27fd49e61c
Add --allow-admin-registration, useful for tests 2019-05-13 17:00:58 +09:00
nicolas.dorier
d049da696c
Fix exception thrown if user does not exist on login 2019-05-08 12:34:13 +09:00
Andrew Camilleri
19a990b095 Add U2f Login Support (#787)
* init u2f

* ux fixes

* Cleanup Manage Controller

* final changes

* remove logs

* remove console log

* fix text for u2f

* Use Is Secure instead of IsHttps

* add some basic u2f tests

* move loaders to before title

* missing commit

* refactor after nicolas wtf moment
2019-05-02 21:01:08 +09:00
Kukks
cfb4b080d3 Emails on store level 2019-01-22 21:38:39 +09:00
Aaron Clauson
6010a103e0 Added new disable-registration command line option. 2019-01-06 16:43:55 +01:00
Aaron Clauson
5dc1da2af0 Don't disable user registrations if debug for unit tests. 2019-01-06 14:55:18 +01:00
Aaron Clauson
0dcaf80c7f Changed disable register mechanism to apply policy setting after admin user created rather than using DB user count checks. 2018-12-20 20:39:48 +01:00
Aaron Clauson
cfaa5766ed Always allow user registration if there are no user records. 2018-12-19 20:03:27 +01:00
Andrew Camilleri
e05c88370f enable account lockout 2018-09-12 13:36:44 +02:00
nicolas.dorier
023913a852 Rate limit per IP the number of login attempt 2018-08-25 20:28:46 +09:00
nicolas.dorier
846bd08e20 Server admin can add new user 2018-08-02 00:16:16 +09:00
nicolas.dorier
21bbf49640 Rewrite authorization enforcement and simplify the code 2018-04-30 22:00:43 +09:00
nicolas.dorier
1fc9a1a54b Move to a Claim based security 2018-04-30 02:33:42 +09:00
nicolas.dorier
b898cc030c general code cleanup + add analyzers 2018-02-17 13:18:16 +09:00
nicolas.dorier
ba0e080816 Invoices has events recorded 2018-01-14 21:48:23 +09:00