Draft
Conversation
…Field with hook to show errors
…ing zod validation
…oad and detail page.
…ing in HEADObject, fixed object routing URI
…l changes in settings. Adding connection provider profile links/util.
…use of zod to have consistency.
…forcement when MFA is not enabled for certain actions
…p or seucrity hardware token.
🚀 Preview Environment
|
…of credentials for auth0 mangement API
…r security (and why this). README updates. New APIs for enrolling vs existing MFA enabling endpoints.
Collaborator
Author
|
Merged in all the fundamental changes to SST, authentication, etc from main. Untested, but reasonably sure it's in the same state. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Stacking against settings page (draft)
Tested against deploy to staging (followed pattern set up by sendgrid email onboarding resources).
Adds MFA list of methods to settings that have been configured and enables them to be deleted.
Adds add button that triggers a login with MFAenrollment bool set to force a MFA enrollment.
OTP authenticator app or a hardware token allowed.
Note: Email is enabled by default and we can always issue an auth challenge with that as 2 factor. Something to consider on very destructive changes like delete account.