39 Commits

Author	SHA1	Message	Date
Kukks	389695751f	add u2f tests	2020-01-14 11:47:24 +01:00
Kukks	dad3039c06	throw on non-u2f specific errors	2020-01-14 09:49:51 +01:00
Kukks	22ffd48cd4	refactor	2019-11-16 08:57:16 +01:00
Kukks	f1cef81d76	Do not allow login or register over an insecure connection	2019-11-15 12:39:17 +01:00
Umar Bolatov	dfdb99165b	Vary page layout for registering new accounts ... address #1138	2019-11-09 21:24:19 -08:00
nicolas.dorier	55dd8da284	Redirect first run to register, redirect unlogged to login	2019-11-06 15:19:14 +09:00
nicolas.dorier	d66e8f2d13	Removing obsolete StatusMessage	2019-10-31 15:19:38 +09:00
nicolas.dorier	aad586232c	Refactor StatusMessage and remove ExternalLogin	2019-10-31 14:11:33 +09:00
nicolas.dorier	281a2461ad	Refactor authorizations	2019-10-14 00:24:41 +09:00
rockstardev	7282199c31	Cleanup U2F namespace to correspond to folder path	2019-10-02 12:32:41 -05:00
nicolas.dorier	f257f9f91d	[Refactor] Move SQL classes in their own assembly	2019-08-30 18:22:13 +09:00
Nicolas Dorier	be5597085b	Use Safe.Raw and Safe.Json instead of Html.Raw and the JsonHelper, move sanitization at the View level (#960)	2019-08-10 14:05:11 +09:00
nicolas.dorier	be0285155f	Do not redirect from login page if there is a returnUrl.	2019-07-15 17:18:30 +09:00
nicolas.dorier	d176a16caa	fix typo	2019-07-14 22:25:43 +09:00
nicolas.dorier	fd4a27c1a3	When logged in, the URL /account/login is still accessible (Fix https://github.com/btcpayserver/btcpayserver/issues/916)	2019-07-14 22:16:23 +09:00
nicolas.dorier	27fd49e61c	Add --allow-admin-registration, useful for tests	2019-05-13 17:00:58 +09:00
nicolas.dorier	d049da696c	Fix exception thrown if user does not exist on login	2019-05-08 12:34:13 +09:00
Andrew Camilleri	19a990b095	Add U2f Login Support (#787) ... * init u2f * ux fixes * Cleanup Manage Controller * final changes * remove logs * remove console log * fix text for u2f * Use Is Secure instead of IsHttps * add some basic u2f tests * move loaders to before title * missing commit * refactor after nicolas wtf moment	2019-05-02 21:01:08 +09:00
Kukks	cfb4b080d3	Emails on store level	2019-01-22 21:38:39 +09:00
Aaron Clauson	6010a103e0	Added new disable-registration command line option.	2019-01-06 16:43:55 +01:00
Aaron Clauson	5dc1da2af0	Don't disable user registrations if debug for unit tests.	2019-01-06 14:55:18 +01:00
Aaron Clauson	0dcaf80c7f	Changed disable register mechanism to apply policy setting after admin user created rather than using DB user count checks.	2018-12-20 20:39:48 +01:00
Aaron Clauson	cfaa5766ed	Always allow user registration if there are no user records.	2018-12-19 20:03:27 +01:00
Andrew Camilleri	e05c88370f	enable account lockout	2018-09-12 13:36:44 +02:00
nicolas.dorier	023913a852	Rate limit per IP the number of login attempt	2018-08-25 20:28:46 +09:00
nicolas.dorier	846bd08e20	Server admin can add new user	2018-08-02 00:16:16 +09:00
nicolas.dorier	21bbf49640	Rewrite authorization enforcement and simplify the code	2018-04-30 22:00:43 +09:00
nicolas.dorier	1fc9a1a54b	Move to a Claim based security	2018-04-30 02:33:42 +09:00
nicolas.dorier	b898cc030c	general code cleanup + add analyzers	2018-02-17 13:18:16 +09:00
nicolas.dorier	ba0e080816	Invoices has events recorded	2018-01-14 21:48:23 +09:00
nicolas.dorier	e3a1eed8b3	Use Websocket for blockchain notifications	2018-01-08 02:36:41 +09:00
nicolas.dorier	45aee607e3	Can lock down registrations	2017-12-04 00:55:39 +09:00
nicolas.dorier	4deb7c3270	Adopt dotnet core editorconfig, big reformating	2017-10-27 17:53:04 +09:00
NicolasDorier	30eb1bd80e	use environment variable for configuring BTCPayServer	2017-09-28 11:02:21 +09:00
NicolasDorier	878a13f1bf	Can ask user to confirm email	2017-09-27 14:18:09 +09:00
NicolasDorier	e7540fe58b	Make first user admin of the website	2017-09-15 19:08:31 +09:00
NicolasDorier	f8baab8138	Renaming + fix invoice display when paid and expired	2017-09-15 16:06:57 +09:00
NicolasDorier	467ecd0923	Decouple User from Store	2017-09-13 23:50:36 +09:00
NicolasDorier	b5c6ed3860	Init	2017-09-13 15:55:16 +09:00