This is an integration of the FIDO U2F Standard as registration for the Zend Framework 3. I programmed it for my bachelor thesis "Integration und Beschreibung der U2F Authentifikation in das Zend Framework".
Current version: 2.0.0
- Download or clone repository
- Copy all files to your project
- Copy
module/SengeraU2Ffolder into your module folder - Copy
public/js/u2f-api.jsfile into same direction in your project - Check requirements. Install modules if needed
- Check configurations for required modules. (e.g. doctrine database credentials, zend cache configuration [...])
- Integrate into your applications workflow
New URLs to reach:
/register- Register Form with Emailadress and Password/register-u2f- Register Form for an FIDO U2F Key/register-u2f-do- AJAX Action for FIDO U2F Javascript Call/login- Login Form with Emailadress and Password/login-u2f- Second factor login with FIDO U2F Key/login-u2f-do- AJAX Action for FIDO U2F Javascript Call/dashboard- Simple dashboard for logged in users/logout- Logout action
Doctrine\ORM\MappingInterop\ContainerZend\CryptZend\EscaperZend\FormZend\Mvc\ControllerZend\ServiceManagerZend\SessionZend\ValidatorZend\View
- Add simple backend
- Add logout function
- Important login security fixes
- Add logged_in session variable for further use
- Major security fixes
- Small bugfixes
- Basic error handling
- Add login functions
- Login after registrations works basically
- Base Version
- Registration works basically
- Basic installation
- Very basic structure
- New counter write after login in database
- Clean U2fServerService
- Main menu bar: check if user is logged in, change login and register to logout button
- Forgot password functionality
- Ability to add a second U2F device to user account. Function: Mark a key as primary
- Ability to delete U2F devices from user account
- Email notification, if "not primary" U2F device is used for authentication, cause of security reasons
Marvin Sengera
Visit: http://marvin-sengera.de
© Marvin Sengera - 2018