saret/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2025-09-12 11:35:57 +03:00
Code Issues Packages Projects Releases Wiki Activity

Updated authenticator TOTP

Browse Source 
- Added security check for previouse used codes
- Allow TOTP codes with 1 step back and forward when there is a time
drift. This means in total 3 codes could be valid. But only newer codes
then the previouse used codes are excepted after that.
This commit is contained in:
BlackDex
2019-10-10 17:32:20 +02:00
parent 45d9d8db94
commit ebf40099f2
12 changed files with 60 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/db/models/two_factor.rs
View File

@@ -19,6 +19,7 @@ pub struct TwoFactor {
pub atype: i32,
pub enabled: bool,
pub data: String,
pub last_used: i32,
}
#[allow(dead_code)]
@@ -47,6 +48,7 @@ impl TwoFactor {
atype: atype as i32,
enabled: true,
data,
last_used: 0,
}
}