Chris Wagner
Chris Wagner
My reading of https://www.w3.org/TR/2021/REC-webauthn-2-20210408/#sctn-authenticator-credential-properties-extension implies that if I as a RP want to know for example, if the authenticator created a resident key - the RegistrationCreateOptions should contains appropriate values...
Seems like a useful additional MFA option - supported by: https://github.com/duosecurity/duo_universal_python) Right now, the two_factor code is pretty inter-tangled with no real plugin architecture - this is hampering adding WebAuthn...
passlib has a work factor of 12 by default. OWAPS wants at least 13. We should set that as default config for SECURITY_PASSWORD_HASH_OPTIONS and add to documentation what that config...
The __hash__ and __eq__ seem to mess this up - need to investigate further. https://stackoverflow.com/questions/62567569/ponyorm-with-mixins-with-custom-hash
We are very close to being able to support not requiring email and allowing registration with one of rather than all of identity attributes. While registration would be easy to...
For forgot and passwordless login - add 2FA via SMS/google authenticator to augment the email link. Much of the SMS framework is available from the 2FA work that was added....
From SO: I have a flask application running on a production environment, and one of the user requested a password reset, which sent out an email to them with a...
OWASP https://github.com/OWASP/ASVS/blob/master/4.0/en/0x11-V2-Authentication.md#v21-password-security-requirements 2.2.1 talks about brute force mitigation: Verify that no more than 100 failed attempts per hour is possible on a single account. This can probably be implemented as...
With 2FA and unified sign in - there are now quite a few different ways users can authenticate. While these features are useful, they are 'global'. Applications might want to...
* Flask-Mailman version: 0.3.0 * Python version: 3.9 * Operating System: Mac ### Description Trying to get the from_email (sender) to accept the 'tuple' form ('Nice name', '[email protected]'). This should...