Feat: 2fa (#1783)

* preplan otp, better qrcode library * add 2fa as feature * add totp generation * working totp lifecycle * don't allow disabled user to log in not a security issue as permission handler would fail anyway * require 2fa on login if enabled * update packages * fix typo * remove console.logs
2025-04-01 14:43:48 +02:00
parent 1c7f64ebd5
commit 32b73b850a
24 changed files with 804 additions and 438 deletions
--- a/src/package.json
+++ b/src/package.json
@@ -20,7 +20,7 @@
  "dependencies": {
    "@eschricht/nuxt-color-mode": "^1.1.5",
    "@heroicons/vue": "^2.2.0",
-    "@libsql/client": "^0.15.1",
+    "@libsql/client": "^0.15.2",
    "@nuxtjs/i18n": "^9.4.0",
    "@nuxtjs/tailwindcss": "^6.13.2",
    "@phc/format": "^1.0.0",
@@ -38,9 +38,10 @@
    "is-ip": "^5.0.1",
    "js-sha256": "^0.11.0",
    "lowdb": "^7.0.1",
-    "nuxt": "^3.16.1",
+    "nuxt": "^3.16.2",
+    "otpauth": "^9.4.0",
    "pinia": "^3.0.1",
-    "qrcode": "^1.5.4",
+    "qr": "^0.4.0",
    "radix-vue": "^1.9.17",
    "semver": "^7.7.1",
    "tailwindcss": "^3.4.17",
@@ -53,7 +54,6 @@
    "@nuxt/eslint": "1.3.0",
    "@types/debug": "^4.1.12",
    "@types/phc__format": "^1.0.1",
-    "@types/qrcode": "^1.5.5",
    "@types/semver": "^7.7.0",
    "drizzle-kit": "^0.30.6",
    "eslint": "^9.23.0",