implemented 2FA via email and Authenticator App

2022-06-27 23:16:44 +02:00 · 2022-06-27 23:16:44 +02:00 · e52cfa83f5
commit e52cfa83f5
parent 377eeb4186
11 changed files with 248 additions and 3 deletions
--- a/markdownblog/blog/views.py
+++ b/markdownblog/blog/views.py
@ -10,6 +10,7 @@ from django.shortcuts import render, redirect
 from blog.models import Topic, Tag, Blogpost
 from django.template import Template, Context
 from django.views.decorators.csrf import csrf_exempt
+from django_2fa.decorators import mfa_login_required


 def render_md_file(path) -> Template:
@ -53,6 +54,7 @@ def index(request) -> HttpResponse:


@login_required
+@mfa_login_required
 def edit(request, id) -> HttpResponse:
    blogpost = Blogpost.objects.get(pk=id)
    mdfile_content = open(blogpost.mdfile, "r").read()
@ -94,6 +96,7 @@ def edit(request, id) -> HttpResponse:

@login_required
@csrf_exempt
+@mfa_login_required
 def order(request) -> HttpResponse:
    if request.method == "POST":
        root_id = int(request.POST['rootID']) if request.POST['rootID'] != 'root_list' else None
@ -114,6 +117,7 @@ def order(request) -> HttpResponse:


@login_required
+@mfa_login_required
 def addpost(request) -> HttpResponse:
    context = {'alltopics': Topic.objects.all().order_by('name').values(), 'markdown': '',
               'roottopics': Topic.objects.all().filter(rootTopic=None),
@ -154,6 +158,7 @@ def addpost(request) -> HttpResponse:


 # @login_required
+# @mfa_login_required
 # def createmocks(request, objtype, n) -> HttpResponse:
 #     topics = TopicFactory.create_batch(n)
 #
@ -171,6 +176,7 @@ def addpost(request) -> HttpResponse:


@login_required
+@mfa_login_required
 def addtopic(request):
    context = {'roottopics': Topic.objects.all().filter(rootTopic=None), 'allposts': Blogpost.objects.all()}