maciejpi/nordabiz
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
1,998 Commits 1 Branch 0 Tags 114 MiB
master
Commit Graph

4 Commits

Author SHA1 Message Date
Maciej Pienczyn
cebe52f303 refactor: Rebranding i aktualizacja modelu AI 
- Zmiana nazwy: "Norda Biznes Hub" → "Norda Biznes Partner"
- Aktualizacja modelu AI: Gemini 2.0 Flash → Gemini 3 Flash
- Zachowano historyczne odniesienia w timeline i dokumentacji

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-29 14:08:39 +01:00
Maciej Pienczyn
cfdcfea093 fix: Remove duplicate CSRF input in 2fa_settings.html 
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-14 21:41:01 +01:00
Maciej Pienczyn
6ec830fabc fix: CSRF token in 2FA templates 
Changed {{ csrf_token() }} to proper hidden input field.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-14 21:35:19 +01:00
Maciej Pienczyn
0dba52e9c4 feat: Add security features - 2FA, audit log, alerting 
Security enhancements:
- Two-Factor Authentication (TOTP) for all users
  - Enable/disable 2FA in settings
  - Backup codes for recovery
  - Login flow with 2FA verification
- Audit log for admin actions
  - Track all sensitive operations
  - IP address and user agent logging
- Security alerts system
  - Alert types: brute_force, honeypot_hit, account_locked, geo_blocked
  - Email notifications for high/critical alerts
  - Dashboard for alert management
- Admin security dashboard (/admin/security)
  - View/acknowledge/resolve alerts
  - Unlock locked accounts
  - 2FA status overview

New files:
- security_service.py: Security utilities
- templates/auth/verify_2fa.html
- templates/auth/2fa_settings.html
- templates/auth/2fa_setup.html
- templates/auth/2fa_backup_codes.html
- templates/admin/security_dashboard.html

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-14 21:23:27 +01:00