Updated authenticator TOTP

- Added security check for previouse used codes - Allow TOTP codes with 1 step back and forward when there is a time drift. This means in total 3 codes could be valid. But only newer codes then the previouse used codes are excepted after that.
2025-08-15 07:22:33 +00:00 · 2019-10-10 17:32:20 +02:00 · 2019-10-10 17:32:20 +02:00 · ebf40099f2
commit ebf40099f2
parent 45d9d8db94
12 changed files with 60 additions and 10 deletions
--- a/src/db/models/two_factor.rs
+++ b/src/db/models/two_factor.rs
@ -19,6 +19,7 @@ pub struct TwoFactor {
    pub atype: i32,
    pub enabled: bool,
    pub data: String,
+    pub last_used: i32,
 }

 #[allow(dead_code)]
@ -47,6 +48,7 @@ impl TwoFactor {
            atype: atype as i32,
            enabled: true,
            data,
+            last_used: 0,
        }
    }

--- a/src/db/schemas/mysql/schema.rs
+++ b/src/db/schemas/mysql/schema.rs
@ -92,6 +92,7 @@ table! {
        atype -> Integer,
        enabled -> Bool,
        data -> Text,
+        last_used -> Integer,
    }
 }

--- a/src/db/schemas/postgresql/schema.rs
+++ b/src/db/schemas/postgresql/schema.rs
@ -92,6 +92,7 @@ table! {
        atype -> Integer,
        enabled -> Bool,
        data -> Text,
+        last_used -> Integer,
    }
 }

--- a/src/db/schemas/sqlite/schema.rs
+++ b/src/db/schemas/sqlite/schema.rs
@ -92,6 +92,7 @@ table! {
        atype -> Integer,
        enabled -> Bool,
        data -> Text,
+        last_used -> Integer,
    }
 }