Appwrite/appwrite
1
0
Fork 0
mirror of https://github.com/appwrite/appwrite.git synced 2026-05-26 13:51:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
21,599 Commits 1,269 Branches 495 Tags
99e885dcd00a94ca2f3b098e06ec79b140484643
Commit Graph

1156 Commits

Author SHA1 Message Date
Binyamin Yawitz 4eee8689d3 fixes: Clean URL variables 2024-07-22 09:37:28 -04:00
Richard 1539fc2b7c Merge branch 'main' into update-acct-api-reference 2024-07-03 09:04:45 -04:00
choir27 6a406454ba docs: update api reference 2024-06-21 10:41:46 -04:00
Christy Jacob 991a22f642 Merge pull request #8290 from appwrite/1.5.x 
Sync 1.5.x into refactor-usage-sn
 2024-06-21 00:38:21 +05:30
Christy Jacob 868e57a9a3 Merge pull request #8281 from appwrite/main 
Sync main into 1.5.x
 2024-06-19 12:18:12 +05:30
Bishwajeet Parhi 190560b8ef chore: append attributes instead of replace 2024-06-11 21:17:25 +05:30
Jake Barnby a4c1275764 Add abuse limit for update password 2024-06-10 18:09:30 +12:00
Steven Nguyen a09a09a7a9 fix(auth): fix MFA verification for OAuth2 sessions 
Before this, users who only signed in with OAuth2 were not able to
verify their sessions with MFA because their session already used an
email factor and they couldn't use an additional email factor.

This commit changes the OAuth2 session to include 2 factors: email and
oauth2. This second special factor is used to bypass MFA checks. It is
fine to bypass MFA checks because OAuth2 is supposed to handle the
entire authentication process, verifying who the user is and we, as the
resource provider, only need to trust the OAuth2 provider.
 2024-06-07 16:45:14 -07:00
Bishwajeet Parhi cccda2a46c fix: Don't set target attribute if no existing Target found 2024-06-05 23:34:01 +05:30
Jake Barnby 9bb9f1eee7 Merge remote-tracking branch 'origin/refactor-usage-sn' into fix-setting-secrets 
# Conflicts:
#	tests/e2e/Services/Projects/ProjectsConsoleClientTest.php
 2024-05-23 15:37:13 +12:00
Christy Jacob aa76862692 Merge branch '1.5.x' of https://github.com/appwrite/appwrite into sync-with-1.5.x 2024-05-22 19:43:31 +00:00
Jake Barnby 680cd5194d Fix returning hashed secrets 2024-05-22 14:11:06 +12:00
Jake Barnby c7106b9147 Merge remote-tracking branch 'origin/refactor-usage-sn' into fix-setting-secrets 2024-05-22 12:50:58 +12:00
Steven Nguyen 03fd62cc04 Merge branch 'main' into 1.5.x 2024-05-15 11:36:15 -07:00
Steven Nguyen c76e29077c feat(auth): try to get user name from request param if not from oauth2 
This is only applicable for Apple OAuth2 because this is the only
provider that does not return user name from an API call and only
returns the name in the callback URL.

Reference:
* https://developer.apple.com/documentation/sign_in_with_apple/sign_in_with_apple_js/incorporating_sign_in_with_apple_into_other_platforms#3332115
 2024-05-08 16:35:17 -07:00
Steven Nguyen df064adce3 feat(auth): forward OAuth2 callback params 
The only place Apple includes the user's name is in the params so we
need to forward the params to the redirect endpoint so they can be used
when creating the user.
 2024-05-08 17:36:46 +00:00
Jake Barnby f01922daf9 Fix syntax error 2024-05-08 21:06:30 +12:00
Matej Bačo 08bf5aace4 Mark email verified after email OTP 2024-05-07 09:01:57 +00:00
Steven Nguyen 5b5505cf97 fix(auth): ensure session factors don't contain duplicates 2024-05-06 17:48:44 -07:00
Steven Nguyen 7e07f6b958 feat(auth): ensure user isn't kicked out after enabling MFA 
User's were kicked out and forced to verify their session after enabling
MFA if they already had factors enabled. This change ensures that they
are not kicked out of their current session after MFA is enabled by
adding all relevant factors to the session.
 2024-05-06 17:48:08 -07:00
Steven Nguyen 98d18ecc47 refactor(auth): remove auth duration from Auth::sessionVerify() calls 
The paramter was removed from the method so we don't need to pass it
in anymore.
 2024-05-06 17:16:56 -07:00
Matej Bačo 9616de7576 Merge branch 'main' into refactor-usage-sn-1.5.x 2024-04-26 13:11:21 +02:00
Christy Jacob 92c41954af Merge branch 'main' of https://github.com/appwrite/appwrite into refactor-usage-sn-1.5.x 2024-04-26 09:19:09 +00:00
Damodar Lohani fbdaf7616c Fix response code label 2024-04-25 07:19:02 +05:45
Steven Nguyen b75f5263a2 Merge branch 'main' into chore-sync-main-into-1.5.x 2024-04-23 23:43:53 +00:00
Steven Nguyen f88887abad fix(mfa): fix delete authenticator response model 2024-04-22 22:24:20 +00:00
Vincent (Wen Yu) Ge c57fa3546f Ran formatter 2024-04-18 17:22:41 -04:00
Vincent (Wen Yu) Ge 404de48cc3 Update user create error message for console to be console specific 2024-04-18 17:08:47 -04:00
Steven Nguyen 2f7aff3a44 fix(auth): fix challenge type check 
The factor parameter is case insensitive so we need to make sure
comparing the parameter to the constant is case insensitive too.
 2024-04-16 23:44:46 -07:00
Eldad A. Fux 05dd17bd55 Merge pull request #7949 from appwrite/fix-factors-recovery-code 
Add recovery code to List factors
 2024-04-15 10:48:16 +02:00
Matej Bačo 65115f876c Improve logic for recovery code factor 2024-04-11 07:52:54 +00:00
Matej Bačo 860d292df9 Fix recovery code removal 2024-04-10 14:01:25 +00:00
Matej Bačo b5b8aa5302 Add recovery code as factor 2024-04-10 13:57:36 +00:00
Jake Barnby fb408636a4 Set token secrets as sensitive event params 2024-04-03 16:36:53 +13:00
Matej Bačo d091b37a15 Merge branch 'refactor-usage-sn' into refactor-usage-sn-1.5.x 2024-04-02 18:42:17 +02:00
Eldad Fux beda5293b4 Fix format 2024-04-01 13:08:46 +02:00
Eldad Fux 8ed1da4ea8 Updated getEnv to use system lib 2024-04-01 13:02:47 +02:00
Jake Barnby d5d45c5076 Fix not hiding tokens for clients via realtime 2024-03-26 18:59:56 +13:00
Damodar Lohani 62b2dc0801 use internal ids 2024-03-18 09:22:15 +00:00
Damodar Lohani c849ff0b0f use internal ids for query 2024-03-18 08:52:47 +00:00
loks0n 07eca5bca4 Merge branches 'fix-account-endpoint-order' and '1.5.x' of https://github.com/appwrite/appwrite into fix-account-endpoint-order 2024-03-08 00:27:28 +01:00
Torsten Dittmann dfef0e732c sync: main -> 1.5.x 2024-03-07 17:16:39 +01:00
loks0n 4263235463 fix: reorder account endpoints 2024-03-06 19:07:58 +01:00
Torsten Dittmann 0a1d572c72 chore: run formatter 2024-03-06 18:34:21 +01:00
Torsten Dittmann a53e630536 Merge branch 'main' of https://github.com/appwrite/appwrite into sync-main-1.5.x-2 2024-03-05 10:31:51 +01:00
Torsten Dittmann 8adf6a2b7a Merge branch '1.5.x' of https://github.com/appwrite/appwrite into sync-main-1.5.x 2024-03-04 10:29:06 +01:00
Torsten Dittmann ad39c15d99 Merge pull request #7696 from appwrite/feat-mfa-collection 
feat: mfa collection restructure
 2024-03-04 10:18:49 +01:00
Matej Bačo d4e4337c57 PR review changes 2024-03-04 08:50:50 +00:00
Matej Bačo ccb5636bed fix session security 2024-03-04 07:27:26 +00:00
Matej Bačo c4bd61cdc8 QA changes 2024-03-03 18:11:55 +00:00