Commit graph

16 commits

Author SHA1 Message Date
Jakob
e65dc5708d Validate password on reset according to rules (#158)
* move password rules to Models\User::PASSWORD_RULES

* validate new password according to rules on password reset

* add password requirements info to auth.passwords.reset view
2016-10-30 16:02:39 -04:00
Dane Everitt
afb5011fbe Update to Laravel 5.3
[BREAKING] — REMOVES REMOTE API

A new API will need to be implemented properly using the new Laravel
Passport OAuth2 system. DingoAPI was becoming too unstable and
development wasn’t really moving along enough to continue to rely on it.
2016-09-03 17:09:00 -04:00
Dane Everitt
3df694b618 Update theme support 2016-02-05 23:27:43 -05:00
DDynamic
192498e51a Internal Themes 2016-02-04 18:19:31 -06:00
Dane Everitt
94f5bf0862 fixes error display on login form; closes #46 2016-01-25 19:21:26 -05:00
Dane Everitt
c81bc37865 Why this was a problem is beyond me.
For some reason blade got really upset on a development machine because
of these comments. Doing individual lines fixes it.
2016-01-23 21:30:03 -05:00
Dane Everitt
026df6a36f Relicense project under MIT
Permission obtained from @DDynamic. Contributions from other users were
removed since we did not obtain permission from them for the re-license.

From this point forward all contributors must have a signed Contributor
License Agreement on file.
2016-01-20 15:56:40 -05:00
Dane Everitt
861af87e93 Fix password reset system 2016-01-16 21:57:10 -05:00
Dane Everitt
4604500349 Replace tabs with Spaces
I *really* wish Atom would stop doing this to me.
2016-01-12 23:49:56 -05:00
Dane Everitt
ac8d31d6d6 Fix login form width 2016-01-10 16:17:27 -05:00
Dane Everitt
1a55532f95 Template adjustments 2016-01-04 16:48:22 -05:00
BlameDylan
e927505788 Fix TOTP AJAX 2015-12-13 19:06:42 -06:00
Dane Everitt
288ee1a258 Improved TOTp handling in login.
Cleaned up the code a bit, also checks TOTP before attemping to verify
user.

This addresses the potential for an attacker to try at a password
and/or confirm that the password is correct unless they have a valid
TOTP code for the request. A failed TOTP response will trigger a
throttle count on the login as well.
2015-12-10 21:58:17 -05:00
BlameDylan
4585753d04 Implement Two-factor authentication 2015-12-10 19:40:59 -06:00
BlameDylan
2d57772528 Migrate ability to reset passwords 2015-12-08 18:28:49 -06:00
Dane Everitt
1489f7a694 Initial Commit of Files
PufferPanel v0.9 (Laravel) is now Pterodactyl 1.0
2015-12-06 13:58:49 -05:00