mirror of
https://github.com/discourse/discourse.git
synced 2024-12-20 07:56:19 +08:00
68d35b14f4
Adds 2 factor authentication method via second factor security keys over [web authn](https://developer.mozilla.org/en-US/docs/Web/API/Web_Authentication_API). Allows a user to authenticate a second factor on login, login-via-email, admin-login, and change password routes. Adds registration area within existing user second factor preferences to register multiple security keys. Supports both external (yubikey) and built-in (macOS/android fingerprint readers).
39 lines
1.0 KiB
Ruby
39 lines
1.0 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
class UserSecurityKey < ActiveRecord::Base
|
|
belongs_to :user
|
|
|
|
scope :second_factors, -> do
|
|
where(factor_type: UserSecurityKey.factor_types[:second_factor], enabled: true)
|
|
end
|
|
|
|
def self.factor_types
|
|
@factor_types ||= Enum.new(
|
|
second_factor: 0,
|
|
first_factor: 1,
|
|
multi_factor: 2,
|
|
)
|
|
end
|
|
end
|
|
|
|
# == Schema Information
|
|
#
|
|
# Table name: user_security_keys
|
|
#
|
|
# id :bigint not null, primary key
|
|
# user_id :integer not null
|
|
# factor_type :integer not null
|
|
# credential_id :string not null, UNIQUE
|
|
# public_key :string not null
|
|
# enabled :boolean default(FALSE), not null
|
|
# last_used :datetime
|
|
# created_at :datetime not null
|
|
# updated_at :datetime not null
|
|
# name :string not null
|
|
#
|
|
# Indexes
|
|
#
|
|
# index_user_security_keys_on_credential_id (credential_id) (UNIQUE)
|
|
# index_user_security_keys_on_factor_type (factor_type)
|
|
#
|