6ba2891604
Add trusted_users in trusted networks auth provider ( #22478 )
2019-03-27 21:53:11 -07:00
9d21afa444
Update translations
2019-03-27 21:32:58 -07:00
72bb94de96
Update translations
2019-03-21 12:57:20 -07:00
d635111e4f
Update translations
2019-03-12 11:31:17 -07:00
8bfbe3e085
Add update user command ( #21922 )
...
* Add update user command
* Add is_admin to current user
2019-03-11 12:08:02 -07:00
31a4187cc0
Log if aiohttp hits error during IndieAuth ( #21780 )
...
* Log if aiohttp hits error during IndieAuth
* Add content of redirect_url into error log
Co-Authored-By: awarecan <awarecan@users.noreply.github.com>
2019-03-08 14:51:13 -08:00
3da0ed9cc7
Onboarding to generate auth code ( #21777 )
2019-03-08 13:51:42 -08:00
78217fa9b0
Update translations
2019-02-27 16:34:13 -08:00
3fcbc36abe
Update translations
2019-02-21 16:40:25 -08:00
02f207ea8e
Update translations
2019-02-13 15:44:18 -08:00
c2eec16721
Update translations
2019-02-02 14:12:23 -08:00
96b8c517f0
Update translations
2019-01-13 09:38:22 -08:00
9aed40a88d
Update translations
2019-01-09 15:29:31 -08:00
fe2d24c240
Update translations
2018-12-10 09:54:12 +01:00
83311df933
Add translations
2018-12-06 00:30:33 +01:00
3c92aa9ecb
Update translations
2018-11-26 14:30:21 +01:00
75bb78d440
Update translations
2018-11-15 14:30:37 +01:00
e8e135fd25
Update translations
2018-11-03 13:47:36 +01:00
20fb7b59ef
Update translations
2018-10-30 11:35:40 +01:00
312d49caec
Allow creating signed urls ( #17759 )
...
* Allow creating signed urls
* Fix parameter
* Lint
2018-10-25 16:44:57 +02:00
c7c0ed89c8
Convert auth websocket commands to use async_response decorator ( #17755 )
2018-10-24 15:23:09 +02:00
355005114b
Update translations
2018-10-21 20:34:28 +02:00
a5b9f5040f
Update translations
2018-10-17 14:12:41 +02:00
6971e84ddf
Update translations
2018-10-12 14:58:09 +02:00
d16e6c8524
Update translations
2018-10-10 14:25:21 +02:00
0c770520ed
Update translations
2018-10-05 17:50:00 +02:00
38e2926a48
Update translations
2018-10-02 14:33:47 +02:00
2e6346ca43
Break up websocket 2 ( #17028 )
...
* Break up websocket 2
* Lint+Test
* Lintttt
* Rename
2018-10-01 16:09:31 +02:00
f5632a5da5
Add webhook + IFTTT example ( #16817 )
...
* Add webhook + IFTTT example
* Abort if not externally accessible
* Abort on local url
* Add description to create entry
* Make body optional
* Allow ifttt setup without config
* Add tests
* Lint
* Fix Lint + Tests
* Fix typing
2018-09-30 14:45:48 +02:00
bac71d3d22
Update translations
2018-09-27 23:04:28 +02:00
732009c668
Update translations
2018-09-26 15:39:20 +02:00
98a4b1e9ac
Update language strings ( #16884 )
2018-09-26 13:07:43 +02:00
75c372021d
Fix example for long-lived access token WS API ( #16882 )
2018-09-26 11:20:48 +02:00
d4b239d1d4
Update translations
2018-09-24 12:01:01 +02:00
7a77951bb4
Add Notify MFA module ( #16314 )
...
* Add Notify MFA
* Fix unit test
* Address review comment, change storage implementation
* Add retry limit to mfa module
* Fix loading
* Fix invalaid login log processing
* Typing
* Change default message template
* Change one-time password to 8 digit
* Refactoring to not save secret
* Bug fixing
* Change async_initialize method name to aysnc_initialize_login_mfa_step
* Address some simple fix code review comment
2018-09-24 11:06:50 +02:00
849a93e0a6
Update translations
2018-09-17 10:48:22 +02:00
ff78a5b04b
Track refresh token last usage information ( #16408 )
...
* Extend refresh_token to support last_used_at and last_used_by
* Address code review comment
* Remove unused code
* Add it to websocket response
* Fix typing
2018-09-12 13:24:16 +02:00
34d369ba26
Return if refresh token is current used one in WS API ( #16575 )
2018-09-12 09:49:44 +02:00
3f06b4eb9b
Update translations
2018-09-11 21:36:54 +02:00
0db13a99aa
Add websocket commands for refresh tokens ( #16559 )
...
* Add websocket commands for refresh tokens
* Comment
2018-09-11 09:08:03 -07:00
9583947012
Long-lived access token ( #16453 )
...
* Allow create refresh_token with specific access_token_expiration
* Add token_type, client_name and client_icon
* Add unit test
* Add websocket API to create long-lived access token
* Allow URL use as client_id for long-lived access token
* Remove mutate_refresh_token method
* Use client name as id for long_lived_access_token type refresh token
* Minor change
* Do not allow duplicate client name
* Update docstring
* Remove unnecessary `list`
2018-09-11 12:05:15 +02:00
cfe5db4350
Fail fetch auth providers if onboarding required ( #16454 )
2018-09-10 23:51:40 +02:00
1d6609e386
Update translations
2018-09-10 13:44:27 +02:00
a2a447b466
Update translations
2018-09-03 13:21:37 +02:00
5e8a1496d7
Update translations
2018-08-31 13:23:22 +02:00
e8801ee22f
Update translations
2018-08-29 10:28:34 +02:00
f891d0f5be
Update translations
2018-08-28 20:55:58 +02:00
94662620e2
Update translations
2018-08-27 10:16:59 +02:00
47755fb1e9
Add Time-based Onetime Password Multi-factor Authentication Module ( #16129 )
...
* Add Time-based Onetime Password Multi-factor Auth
Add TOTP setup flow, generate QR code
* Resolve rebase issue
* Use svg instead png for QR code
* Lint and typing
* Fix translation
* Load totp auth module by default
* use <svg> tag instead markdown image
* Update strings
* Cleanup
2018-08-26 22:38:52 +02:00
e8775ba2b4
Add multi-factor auth module setup flow ( #16141 )
...
* Add mfa setup flow
* Lint
* Address code review comment
* Fix unit test
* Add assertion for WS response ordering
* Missed a return
* Remove setup_schema from MFA base class
* Move auth.util.validate_current_user -> webscoket_api.ws_require_user
2018-08-24 10:17:43 -07:00
cdb8361050
Add support for revoking refresh tokens ( #16095 )
...
* Add support for revoking refresh tokens
* Lint
* Split revoke logic in own method
* Simplify
* Update docs
2018-08-21 11:02:55 -07:00
b26506ad4a
Use new session when fetching remote urls ( #16093 )
2018-08-21 19:03:46 +02:00
f84a31871e
Get user after login flow finished ( #16047 )
...
* Get user after login flow finished
* Add optional parameter 'type' to /auth/login_flow
* Update __init__.py
2018-08-21 10:18:04 +02:00
e776f88eec
Use JWT for access tokens ( #15972 )
...
* Use JWT for access tokens
* Update requirements
* Improvements
2018-08-14 21:14:12 +02:00
da8f93dca2
Add trusted networks auth provider ( #15812 )
...
* Add context to login flow
* Add trusted networks auth provider
* source -> context
2018-08-13 12:40:06 +02:00
50daef9a52
Add context to login flow ( #15914 )
...
* Add context to login flow
* source -> context
* Fix unit test
* Update comment
2018-08-13 11:27:18 +02:00
0ab3e7a92a
Add IndieAuth 4.2.2 redirect uri at client id ( #15911 )
...
* Add IndieAuth 4.2.2 redirect uri at client id
* Fix tests
* Add comment
* Limit to first 10kB of each page
2018-08-10 18:09:42 +02:00
eeb79476de
Decouple login flow view and data entry flow view ( #15715 )
2018-07-30 21:59:18 -07:00
93d6fb8c60
Break up components/auth ( #15713 )
2018-07-28 17:54:26 -07:00
cbb5d34167
Added user credentials to current_user ws endpoint. ( #15558 )
...
* Added user credentials to current_user ws endpoint.
* Comments. Added another test.
* Return list of credentials.
2018-07-25 10:34:18 +02:00
d7690c5fda
Add ipban for failed login attempt in new login flow ( #15551 )
...
* Add ipban for failed login attempt in new login flow
* Address review comment
* Use decorator to clean up code
2018-07-24 10:09:52 +02:00
4e7dbf9ce5
Allow system users to refresh tokens ( #15574 )
2018-07-23 14:06:09 +02:00
b7c336a687
Pylint cleanups ( #15626 )
...
* Pylint 2 no-else-return fixes
* Remove unneeded abstract-class-not-used pylint disable
2018-07-23 10:16:05 +02:00
2a76a0852f
Allow CORS requests to token endpoint ( #15519 )
...
* Allow CORS requests to token endpoint
* Tests
* Fuck emulated hue
* Clean up
* Only cors existing methods
2018-07-19 08:37:00 +02:00
8797cb78a9
Add current user WS command ( #15485 )
2018-07-17 09:24:51 +02:00
864a254071
Aware comments ( #15480 )
...
* Make sure we cannot deactivate the owner
* Use different error code when trying to fetch token for inactive user
2018-07-15 23:09:05 +02:00
ed0cfc4f31
Add user via cmd line creates owner ( #15470 )
...
* Add user via cmd line creates owner
* Ensure access tokens are not verified for inactive users
* Stale print
* Lint
2018-07-15 20:46:15 +02:00
70fe463ef0
User management ( #15420 )
...
* User management
* Lint
* Fix dict
* Reuse data instance
* OrderedDict all the way
2018-07-13 15:31:20 +02:00
dbdd0a1f56
Expire auth code after 10 minutes ( #15381 )
2018-07-10 11:20:22 +02:00
0d4841cbea
Use IndieAuth for client ID ( #15369 )
...
* Use IndieAuth for client ID
* Lint
* Lint & Fix tests
* Allow local IP addresses
* Update comment
2018-07-09 18:24:46 +02:00
cb129bd207
Add system generated users ( #15291 )
...
* Add system generated users
* Fix typing
2018-07-04 11:50:08 -04:00
5ec7fc7ddb
Backend tweaks to make authorization work ( #14339 )
...
* Backend tweaks to make authorization work
* Lint
* Add test
* Validate redirect uris
* Fix tests
* Fix tests
* Lint
2018-05-10 10:38:11 +02:00
cdd45e7878
Foundation for users ( #13968 )
...
* Add initial user foundation to Home Assistant
* Address comments
* Address comments
* Allow non-ascii passwords
* One more utf-8 hmac compare digest
* Add new line
2018-05-01 18:20:41 +02:00
Jason Hu
Paulus Schoutsen
Paulus Schoutsen
Robbie Trencheny
cgtobi
Paulus Schoutsen
Jerad Meisner
Ville Skyttä