andreymal
  • Joined on Oct 23, 2020
Loading Heatmap…

andreymal commented on issue vikunja/api#911

TOTP code can be brute-forced

I also noticed that keyvalue storage has no timeout and Vikunja remembers all login attempts, so if I make a typo in the TOTP code, my account is immediately disabled after first try. I guess it's…

4 months ago

andreymal commented on issue vikunja/api#911

TOTP code can be brute-forced

I think there are too many emails :) ![](https://i.imgur.com/1KFISrn.png)

4 months ago

andreymal opened issue vikunja/frontend#590

Don't reset activeFields after editing some field

5 months ago

andreymal commented on issue vikunja/frontend#587

Cannot visit more than one shared link

Now it works 👍 Seems the logout button is no longer needed? Removing it will make shared pages look a bit nicer

5 months ago

andreymal commented on issue vikunja/frontend#587

Cannot visit more than one shared link

@konrad it seems I caught a race condition: the `user/token` and `shares/.../auth` requests are sent at almost same time, and the authorization result depends on which request responds last

5 months ago

andreymal opened issue vikunja/frontend#587

Cannot visit more than one shared link

5 months ago

andreymal commented on issue vikunja/frontend#484

[Feature Request] Add Customization to the UI

@Gensokian this feature request requires native css variables, but this link describes sass variables which unfortunately can't be modified outside the source code

5 months ago

andreymal opened issue vikunja/api#914

User with read-write access can edit favorites of another user

5 months ago

andreymal commented on pull request vikunja/frontend#581

Improve some translations

(I don't know why this test is failing)

5 months ago

andreymal pushed to main at andreymal/frontend

5 months ago

andreymal created pull request vikunja/frontend#581

Improve some translations

5 months ago

andreymal pushed to main at andreymal/frontend

5 months ago

andreymal created repository andreymal/frontend

5 months ago

andreymal commented on issue vikunja/api#911

TOTP code can be brute-forced

>something like fail2ban can pick it up and block the ip Note that GitHub [shows an informative error page](https://i.imgur.com/7LteBxr.png) and doesn't block other sessions that are already…

5 months ago

andreymal pushed to main at andreymal/api

5 months ago

andreymal created pull request vikunja/api#912

Add support of Unix socket

5 months ago

andreymal pushed to main at andreymal/api

5 months ago

andreymal created repository andreymal/api

5 months ago

andreymal opened issue vikunja/api#911

TOTP code can be brute-forced

5 months ago

andreymal opened issue vikunja/frontend#575

Translate formatDateSince

5 months ago