Ghost

mirror of https://github.com/TryGhost/Ghost.git synced 2024-11-25 19:48:50 +03:00

History

Kevin Ansfield 68af12cfad Added 2fa happy path to Admin closes https://linear.app/tryghost/issue/ENG-1617/ closes https://linear.app/tryghost/issue/ENG-1619/ - updated cookie authenticator's `authenticate` method to accept an `{identification, pasword, token}` object - if `token` is provided, hit our `PUT /session/verify/` endpoint passing through the token instead of hitting the `POST /session/` endpoint - added `signin/verify` route - displays a 2fa code input field, including required attributes for macOS auto-fill from email/messages to work - uses `session.authenticate({token})` when submitted - updated signin routine to detect token-required state - detects a `403` response with a `2FA_TOKEN_REQUIRED` code property when authenticating - if detected transitions to the `signin/verify` route	2024-10-21 11:01:40 +01:00
..
cookie.js	Added 2fa happy path to Admin	2024-10-21 11:01:40 +01:00

Kevin Ansfield 68af12cfad Added 2fa happy path to Admin

closes https://linear.app/tryghost/issue/ENG-1617/
closes https://linear.app/tryghost/issue/ENG-1619/

- updated cookie authenticator's `authenticate` method to accept an `{identification, pasword, token}` object
  - if `token` is provided, hit our `PUT /session/verify/` endpoint passing through the token instead of hitting the `POST /session/` endpoint
- added `signin/verify` route
  - displays a 2fa code input field, including required attributes for macOS auto-fill from email/messages to work
  - uses `session.authenticate({token})` when submitted
- updated signin routine to detect token-required state
  - detects a `403` response with a `2FA_TOKEN_REQUIRED` code property when authenticating
  - if detected transitions to the `signin/verify` route

2024-10-21 11:01:40 +01:00

cookie.js

Added 2fa happy path to Admin

2024-10-21 11:01:40 +01:00