Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature List #170

Open
41 tasks
hifabienne opened this issue Sep 12, 2024 · 1 comment
Open
41 tasks

Feature List #170

hifabienne opened this issue Sep 12, 2024 · 1 comment
Assignees
@peintnermax
Labels
login Login Application v3

Comments

@hifabienne
Copy link
Member

hifabienne commented Sep 12, 2024
edited
Loading

Login Authentication Possibilities

I should be able to configure if the following authentication possibilities are allowed or not.

Should we add to each method how long it should be valid? To get rid of the loginlifetimes?

  • Username (enabled?)
    • suffix?
  • Password (enabled & lifetime?)
    • password complexity
    • password expiry
    • password reset allowed?
    • password reset code
  •  Passkey
    • Code Generator
  • TOTP
  • SMS OTP
    • OTP Code Generator
  • EMail OTP
    • OTP Code Generator
  • External IDP
    • Mapping?
    • auto creation / linking/ update
    • manual creation / linking

(Remove from Login Policy

  • Username and Password allowed
  • Email login
  • Phone Login

Login

  • Trigger organization including settings and branding (without oidc, e.g org param)

OIDC

SAML

Selfservice Possibilities

  • Register Local User
    • Link to external form?
  • Register Authentication (add mfa/force mfa)
  • Register External User
  • Register Org
  • Terms of Service (accept, or show)
  • Privacy Policy (accept or show)
  • Help Link
  • Support Email
  • User Profile Page

Configurations

  • Minimal Authentication Level Step up authentication (replace force mfa).
  • Domain Discovery (Org Domains)
  • Ignore unknown usernames? (Better name?)
  • Default Redirect URL
  • Add more security prompt (mfa init check)
  • Re-authentication
  • lockout

Notifications

  •  Providers
  • Enabled / Disable

To Remove

  • SMTP Sender Address matches Instance domain

Questions:

  • Is is possible to somehow inject CSS? e.g get rid of the password reset link?
  • Can I do so per organization?
@hifabienne hifabienne mentioned this issue Sep 12, 2024
Open
26 tasks
@hifabienne hifabienne added v3 login Login Application labels Sep 12, 2024
@hifabienne
Copy link
Member Author

General Flows:

image

@hifabienne hifabienne moved this from 🧐 Investigating to 📨 Product Backlog in Product Management Nov 22, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@peintnermax peintnermax

Labels
login Login Application v3
Projects
Product Management
Status: 📨 Product Backlog
Milestone
No milestone
Development

No branches or pull requests
2 participants
@peintnermax @hifabienne