Creating a zone that is accesible only for mfa logged in users.

pondersource / nextcloud-mfa-awareness

Make Nextcloud aware of whether the current user is logged in with Multi-Factor Authentication

MIT License

0 stars 2 forks source link

Creating a zone that is accesible only for mfa logged in users. #25

Closed shokri-navid closed 1 year ago

shokri-navid commented 1 year ago

we can check this app and find out mechanisms of applying access control on folders by defining some criteria. and after that, we can create similar criteria for MFA access control.

nickvergessen commented 1 year ago

Sounds like a nice idea. For that it should provide a check for the workflow engine: https://github.com/nextcloud/server/tree/master/apps/workflowengine/lib/Check

But at the moment those checks can not be provided by apps I think.

michielbdejong commented 1 year ago

In our session today we found that we were able to edit https://github.com/nextcloud/server/blob/master/apps/workflowengine/lib/Check/FileMimeType.php so that it bars access based on the mfa-verified flag from the session, instead of based on the actual file mime type.

Steps left:

[x] #28
[x] #26
[ ] #27

michielbdejong commented 1 year ago

Done (but see list of loose ends in milestone 4)

michielbdejong commented 1 year ago

Issue #27 was moved to milestone 4