This website requires JavaScript.
Explore
Help
Sign In
dkam
/
clinch
Watch
1
Star
0
Fork
0
You've already forked clinch
Code
Issues
4
Pull Requests
Actions
Packages
Projects
Releases
Wiki
Activity
Files
9234904e47cd66a0322e6e28d0797e98fd8a58e6
clinch
/
app
/
models
History
Dan Milne
3db466f5a2
Some checks failed
CI / scan_ruby (push)
Has been cancelled
Details
CI / scan_js (push)
Has been cancelled
Details
CI / lint (push)
Has been cancelled
Details
CI / test (push)
Has been cancelled
Details
CI / system-test (push)
Has been cancelled
Details
Switch Access / Refresh tokens / Auth Code from bcrypt ( and plain ) to hmac. BCrypt is for low entropy passwords and prevents dictionary attacks - HMAC is suitable for 256-bit random data.
2025-12-31 15:48:32 +11:00
..
concerns
Switch Access / Refresh tokens / Auth Code from bcrypt ( and plain ) to hmac. BCrypt is for low entropy passwords and prevents dictionary attacks - HMAC is suitable for 256-bit random data.
2025-12-31 15:48:32 +11:00
application_group.rb
First crack
2025-10-23 16:45:00 +11:00
application_record.rb
First commit
2025-10-23 16:19:56 +11:00
application_user_claim.rb
Add OIDC fixes, add prefered_username, add application-user claims
2025-11-25 16:29:40 +11:00
application.rb
PKCE is now default enabled. You can now create public / no-secret apps OIDC apps
2025-12-31 09:22:18 +11:00
current.rb
First crack
2025-10-23 16:45:00 +11:00
group.rb
Add OIDC fixes, add prefered_username, add application-user claims
2025-11-25 16:29:40 +11:00
oidc_access_token.rb
Switch Access / Refresh tokens / Auth Code from bcrypt ( and plain ) to hmac. BCrypt is for low entropy passwords and prevents dictionary attacks - HMAC is suitable for 256-bit random data.
2025-12-31 15:48:32 +11:00
oidc_authorization_code.rb
Switch Access / Refresh tokens / Auth Code from bcrypt ( and plain ) to hmac. BCrypt is for low entropy passwords and prevents dictionary attacks - HMAC is suitable for 256-bit random data.
2025-12-31 15:48:32 +11:00
oidc_refresh_token.rb
Switch Access / Refresh tokens / Auth Code from bcrypt ( and plain ) to hmac. BCrypt is for low entropy passwords and prevents dictionary attacks - HMAC is suitable for 256-bit random data.
2025-12-31 15:48:32 +11:00
oidc_user_consent.rb
Add pairwise SID with a UUIDv4, a significatant upgrade over User.id.to_s. Complete allowing admin to enforce TOTP per user
2025-11-23 11:16:06 +11:00
session.rb
First crack
2025-10-23 16:45:00 +11:00
user_group.rb
First crack
2025-10-23 16:45:00 +11:00
user.rb
Add rails encryption for totp - allow configuration of encryption secrets from env, or derive them from SECRET_KEY_BASE. Don't leak email address via web_authn, rate limit web_authn, escape oidc state value, require password for changing email address, allow settings the hmac secret for token prefix generation
2025-12-31 10:33:56 +11:00
webauthn_credential.rb
Add webauthn
2025-11-04 16:20:11 +11:00
