cameleer-saas

cameleer/cameleer-saas

Fork 0

Commit Graph

Author	SHA1	Message	Date
hsiegeln	2aa5100530	fix: add password re-verification before passkey registration All checks were successful CI / build (push) Successful in 2m28s Details CI / docker (push) Successful in 1m32s Details Logto Account API requires identity verification (logto-verification-id header) for sensitive MFA operations. Adds a password prompt modal before the WebAuthn ceremony — verifies password first, then proceeds with passkey registration using the verification record ID. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-27 18:10:47 +02:00
hsiegeln	c22580e124	feat: always enable WebAuthn in MFA factors and add passkey registration All checks were successful CI / build (push) Successful in 2m3s Details CI / docker (push) Successful in 1m26s Details - Sync vendor auth policy to Logto sign-in experience on save and on startup. Always include WebAuthn + TOTP + BackupCode in MFA factors when MFA is enabled — no reason to gate passkeys behind a toggle. - Enable Logto Account Center on startup for user-facing MFA management. - Add passkey registration to account settings via Logto Account API. Frontend calls Logto directly (same domain) for the WebAuthn ceremony: generate options, browser credential creation, verify, and bind. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-27 17:01:58 +02:00
hsiegeln	e563631efb	feat: extract shared account components (Profile, Password, MFA, Passkey) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-27 14:53:05 +02:00

Author

SHA1

Message

Date

hsiegeln

2aa5100530

fix: add password re-verification before passkey registration

CI / build (push) Successful in 2m28s

Details

CI / docker (push) Successful in 1m32s

Details

Logto Account API requires identity verification (logto-verification-id
header) for sensitive MFA operations. Adds a password prompt modal before
the WebAuthn ceremony — verifies password first, then proceeds with
passkey registration using the verification record ID.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-27 18:10:47 +02:00

hsiegeln

c22580e124

feat: always enable WebAuthn in MFA factors and add passkey registration

CI / build (push) Successful in 2m3s

Details

CI / docker (push) Successful in 1m26s

Details

- Sync vendor auth policy to Logto sign-in experience on save and on
  startup. Always include WebAuthn + TOTP + BackupCode in MFA factors
  when MFA is enabled — no reason to gate passkeys behind a toggle.
- Enable Logto Account Center on startup for user-facing MFA management.
- Add passkey registration to account settings via Logto Account API.
  Frontend calls Logto directly (same domain) for the WebAuthn ceremony:
  generate options, browser credential creation, verify, and bind.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-27 17:01:58 +02:00

hsiegeln

e563631efb

feat: extract shared account components (Profile, Password, MFA, Passkey)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-27 14:53:05 +02:00

3 Commits