nordabiz

maciejpi/nordabiz

Fork 0

Commit Graph

Author	SHA1	Message	Date
Maciej Pienczyn	cebe52f303	refactor: Rebranding i aktualizacja modelu AI - Zmiana nazwy: "Norda Biznes Hub" → "Norda Biznes Partner" - Aktualizacja modelu AI: Gemini 2.0 Flash → Gemini 3 Flash - Zachowano historyczne odniesienia w timeline i dokumentacji Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-01-29 14:08:39 +01:00
Maciej Pienczyn	6ec830fabc	fix: CSRF token in 2FA templates Changed {{ csrf_token() }} to proper hidden input field. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-01-14 21:35:19 +01:00
Maciej Pienczyn	0dba52e9c4	feat: Add security features - 2FA, audit log, alerting Security enhancements: - Two-Factor Authentication (TOTP) for all users - Enable/disable 2FA in settings - Backup codes for recovery - Login flow with 2FA verification - Audit log for admin actions - Track all sensitive operations - IP address and user agent logging - Security alerts system - Alert types: brute_force, honeypot_hit, account_locked, geo_blocked - Email notifications for high/critical alerts - Dashboard for alert management - Admin security dashboard (/admin/security) - View/acknowledge/resolve alerts - Unlock locked accounts - 2FA status overview New files: - security_service.py: Security utilities - templates/auth/verify_2fa.html - templates/auth/2fa_settings.html - templates/auth/2fa_setup.html - templates/auth/2fa_backup_codes.html - templates/admin/security_dashboard.html Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-01-14 21:23:27 +01:00

Author

SHA1

Message

Date

Maciej Pienczyn

cebe52f303

refactor: Rebranding i aktualizacja modelu AI

- Zmiana nazwy: "Norda Biznes Hub" → "Norda Biznes Partner"
- Aktualizacja modelu AI: Gemini 2.0 Flash → Gemini 3 Flash
- Zachowano historyczne odniesienia w timeline i dokumentacji

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-29 14:08:39 +01:00

Maciej Pienczyn

6ec830fabc

fix: CSRF token in 2FA templates

Changed {{ csrf_token() }} to proper hidden input field.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-14 21:35:19 +01:00

Maciej Pienczyn

0dba52e9c4

feat: Add security features - 2FA, audit log, alerting

Security enhancements:
- Two-Factor Authentication (TOTP) for all users
  - Enable/disable 2FA in settings
  - Backup codes for recovery
  - Login flow with 2FA verification
- Audit log for admin actions
  - Track all sensitive operations
  - IP address and user agent logging
- Security alerts system
  - Alert types: brute_force, honeypot_hit, account_locked, geo_blocked
  - Email notifications for high/critical alerts
  - Dashboard for alert management
- Admin security dashboard (/admin/security)
  - View/acknowledge/resolve alerts
  - Unlock locked accounts
  - 2FA status overview

New files:
- security_service.py: Security utilities
- templates/auth/verify_2fa.html
- templates/auth/2fa_settings.html
- templates/auth/2fa_setup.html
- templates/auth/2fa_backup_codes.html
- templates/admin/security_dashboard.html

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-14 21:23:27 +01:00

3 Commits