dependabot[bot]
a3e41d33ca
Build(deps): bump golang.org/x/crypto from 0.31.0 to 0.32.0 ( #235 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.31.0 to 0.32.0.
- [Commits](https://github.com/golang/crypto/compare/v0.31.0...v0.32.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-28 21:27:58 +07:00
dependabot[bot]
515f972707
Build(deps): bump github.com/bytedance/sonic from 1.12.6 to 1.12.8 ( #237 )
...
Bumps [github.com/bytedance/sonic](https://github.com/bytedance/sonic ) from 1.12.6 to 1.12.8.
- [Release notes](https://github.com/bytedance/sonic/releases )
- [Commits](https://github.com/bytedance/sonic/compare/v1.12.6...v1.12.8 )
---
updated-dependencies:
- dependency-name: github.com/bytedance/sonic
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-28 21:27:48 +07:00
dependabot[bot]
2903908bbf
Build(deps): bump github.com/gofiber/fiber/v2 from 2.52.5 to 2.52.6 ( #234 )
...
Bumps [github.com/gofiber/fiber/v2](https://github.com/gofiber/fiber ) from 2.52.5 to 2.52.6.
- [Release notes](https://github.com/gofiber/fiber/releases )
- [Commits](https://github.com/gofiber/fiber/compare/v2.52.5...v2.52.6 )
---
updated-dependencies:
- dependency-name: github.com/gofiber/fiber/v2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-02 01:10:38 +07:00
dependabot[bot]
1b726bfe25
Build(deps): bump github.com/bytedance/sonic from 1.12.5 to 1.12.6 ( #233 )
...
Bumps [github.com/bytedance/sonic](https://github.com/bytedance/sonic ) from 1.12.5 to 1.12.6.
- [Release notes](https://github.com/bytedance/sonic/releases )
- [Commits](https://github.com/bytedance/sonic/compare/v1.12.5...v1.12.6 )
---
updated-dependencies:
- dependency-name: github.com/bytedance/sonic
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-02 01:09:20 +07:00
dependabot[bot]
e3eaad4852
Build(deps): bump golang.org/x/image from 0.21.0 to 0.23.0 ( #229 )
...
Bumps [golang.org/x/image](https://github.com/golang/image ) from 0.21.0 to 0.23.0.
- [Commits](https://github.com/golang/image/compare/v0.21.0...v0.23.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/image
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-12 08:21:35 +07:00
dependabot[bot]
5474b19191
Build(deps): bump github.com/bytedance/sonic from 1.12.3 to 1.12.5 ( #228 )
...
Bumps [github.com/bytedance/sonic](https://github.com/bytedance/sonic ) from 1.12.3 to 1.12.5.
- [Release notes](https://github.com/bytedance/sonic/releases )
- [Commits](https://github.com/bytedance/sonic/compare/v1.12.3...v1.12.5 )
---
updated-dependencies:
- dependency-name: github.com/bytedance/sonic
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-12 08:20:02 +07:00
dependabot[bot]
f50894cf58
Build(deps) [PATCH CVE-2024-45337]: bump golang.org/x/crypto from 0.28.0 to 0.31.0 ( #232 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.28.0 to 0.31.0.
- [Commits](https://github.com/golang/crypto/compare/v0.28.0...v0.31.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-12 08:19:50 +07:00
dependabot[bot]
b859682def
Build(deps): bump golang.org/x/image from 0.20.0 to 0.21.0 ( #224 )
...
Bumps [golang.org/x/image](https://github.com/golang/image ) from 0.20.0 to 0.21.0.
- [Commits](https://github.com/golang/image/compare/v0.20.0...v0.21.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/image
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-05 05:05:58 +07:00
dependabot[bot]
78b28f50a2
Build(deps): bump golang.org/x/crypto from 0.27.0 to 0.28.0 ( #223 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.27.0 to 0.28.0.
- [Commits](https://github.com/golang/crypto/compare/v0.27.0...v0.28.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-05 05:04:23 +07:00
dependabot[bot]
84880835e0
Build(deps): bump golang.org/x/crypto from 0.26.0 to 0.27.0 ( #221 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.26.0 to 0.27.0.
- [Commits](https://github.com/golang/crypto/compare/v0.26.0...v0.27.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-24 08:31:11 +07:00
dependabot[bot]
a4d47bdd33
Build(deps): bump github.com/bytedance/sonic from 1.12.2 to 1.12.3 ( #222 )
...
Bumps [github.com/bytedance/sonic](https://github.com/bytedance/sonic ) from 1.12.2 to 1.12.3.
- [Release notes](https://github.com/bytedance/sonic/releases )
- [Commits](https://github.com/bytedance/sonic/compare/v1.12.2...v1.12.3 )
---
updated-dependencies:
- dependency-name: github.com/bytedance/sonic
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-24 08:28:34 +07:00
dependabot[bot]
ff8539bde3
Build(deps): bump golang.org/x/image from 0.19.0 to 0.20.0 ( #220 )
...
Bumps [golang.org/x/image](https://github.com/golang/image ) from 0.19.0 to 0.20.0.
- [Commits](https://github.com/golang/image/compare/v0.19.0...v0.20.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/image
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-24 08:28:14 +07:00
dependabot[bot]
fac0be61c6
Build(deps): bump golang.org/x/crypto from 0.25.0 to 0.26.0 ( #217 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.25.0 to 0.26.0.
- [Commits](https://github.com/golang/crypto/compare/v0.25.0...v0.26.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-04 08:43:54 +07:00
dependabot[bot]
4944eb8567
Build(deps): bump github.com/zeebo/blake3 from 0.2.3 to 0.2.4 ( #218 )
...
Bumps [github.com/zeebo/blake3](https://github.com/zeebo/blake3 ) from 0.2.3 to 0.2.4.
- [Commits](https://github.com/zeebo/blake3/compare/v0.2.3...v0.2.4 )
---
updated-dependencies:
- dependency-name: github.com/zeebo/blake3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-04 08:43:44 +07:00
dependabot[bot]
8cad6d3d36
Build(deps): bump github.com/bytedance/sonic from 1.11.9 to 1.12.2 ( #219 )
...
Bumps [github.com/bytedance/sonic](https://github.com/bytedance/sonic ) from 1.11.9 to 1.12.2.
- [Release notes](https://github.com/bytedance/sonic/releases )
- [Commits](https://github.com/bytedance/sonic/compare/v1.11.9...v1.12.2 )
---
updated-dependencies:
- dependency-name: github.com/bytedance/sonic
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-04 08:43:27 +07:00
dependabot[bot]
6ce2c4fffe
Build(deps): bump golang.org/x/image from 0.18.0 to 0.19.0 ( #216 )
...
Bumps [golang.org/x/image](https://github.com/golang/image ) from 0.18.0 to 0.19.0.
- [Commits](https://github.com/golang/image/compare/v0.18.0...v0.19.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/image
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-04 08:42:48 +07:00
dependabot[bot]
a85d86dae8
Build(deps): bump golang.org/x/crypto from 0.24.0 to 0.25.0 ( #213 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.24.0 to 0.25.0.
- [Commits](https://github.com/golang/crypto/compare/v0.24.0...v0.25.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-06 03:01:35 +07:00
dependabot[bot]
429c0ab2a1
Build(deps): bump github.com/gofiber/fiber/v2 from 2.52.4 to 2.52.5 ( #212 )
...
Bumps [github.com/gofiber/fiber/v2](https://github.com/gofiber/fiber ) from 2.52.4 to 2.52.5.
- [Release notes](https://github.com/gofiber/fiber/releases )
- [Commits](https://github.com/gofiber/fiber/compare/v2.52.4...v2.52.5 )
---
updated-dependencies:
- dependency-name: github.com/gofiber/fiber/v2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-02 03:03:12 +07:00
dependabot[bot]
bc25eac372
Build(deps): bump golang.org/x/image from 0.17.0 to 0.18.0 ( #211 )
...
Bumps [golang.org/x/image](https://github.com/golang/image ) from 0.17.0 to 0.18.0.
- [Commits](https://github.com/golang/image/compare/v0.17.0...v0.18.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/image
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-26 13:02:30 +07:00
dependabot[bot]
dfb9e41c06
Build(deps): bump github.com/bytedance/sonic from 1.11.8 to 1.11.9 ( #210 )
...
Bumps [github.com/bytedance/sonic](https://github.com/bytedance/sonic ) from 1.11.8 to 1.11.9.
- [Release notes](https://github.com/bytedance/sonic/releases )
- [Commits](https://github.com/bytedance/sonic/compare/v1.11.8...v1.11.9 )
---
updated-dependencies:
- dependency-name: github.com/bytedance/sonic
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-20 10:15:56 +07:00
492e2a1de1
Docs [README] Update Documentation ( #209 )
...
- [+] docs(README): add TODO section with Cloud Messaging Gateway support item
2024-06-13 19:06:52 +07:00
7d21ff6a2f
Docs [pkg.go.dev] Update Documentation ( #208 )
...
- [+] docs(otpverifier): add detailed explanation of OCRA algorithm and its components
- [+] feat(OCRAVerifier): include documentation for OCRAVerifier struct, explaining OCRA algorithm and its cryptographic concepts
2024-06-13 16:14:11 +07:00
048ed37f27
Docs [HOTP OCRA] Update Comment ( #207 )
...
- [+] refactor(otpverifier): update comment for signature verification handling
- [+] The comment is updated to clarify that signature verification should be handled outside the package and integrated with cryptographic protocols like Crypto/TLS for enhanced security, which can then be used in conjunction with this package.
2024-06-13 13:15:01 +07:00
e337547d59
Increase wait time for unpredictable test execution ( #206 )
...
- [+] test(otpverifier): increase wait time for periodic cleanup in test mode
- [+] Increase the wait time for periodic cleanup in the test to account for unpredictable test execution
- [+] The test execution may not be synchronized in test mode, making it challenging to ensure predictable results
- [+] However, in production, the periodic cleanup should be properly synchronized
- [+] Adjust the wait time from `period*4/4` to `period*6/5` seconds to provide more leeway for the cleanup to occur
2024-06-13 11:50:18 +07:00
321b026e02
Improve Test Coverage ( #205 )
...
- [+] test(otpverifier): set QRCodeConfig foreground and background colors to nil in GenerateQRCodeImage test
2024-06-13 10:43:43 +07:00
c47b070d47
Another Testing ( #204 )
...
- [+] test(otpverifier): add test for GenerateQRCodeImage function
2024-06-13 05:42:51 +07:00
0834ce0b39
Fix Testing QR Code Builder ( #203 )
...
- [+] test(otpverifier): add missing QRCodeBuilder configuration in TestTOTPVerifier_SaveQRCodeImage
- [+] test(otpverifier): update QRCodeBuilder FilePath in TestTOTPVerifier_SaveQRCodeImage
- [+] test(otpverifier): add missing QRCodeBuilder configuration in TestHOTPVerifier_SaveQRCodeImage
2024-06-13 05:17:04 +07:00
5e5cd173dc
Docs [TOTP & OCRA] Update Comment ( #202 )
...
- [+] docs(otpverifier): add comments about potential future improvements for OCRA and TOTP token generation
- [+] The comments mention:
- [+] For OCRA, the counter and question values could be bound to a cryptographically secure pseudorandom number
- [+] For TOTP, the character set could be customized beyond just numbers, potentially using ciphertext cryptography. However, this is not being implemented now for compatibility with existing 2FA apps.
2024-06-13 03:23:00 +07:00
cacaf1b59b
Deprecated "ensureDefaultConfig" ( #201 )
...
- [+] refactor(otpverifier): move ensureDefaultConfig to deadcode.go
2024-06-13 01:13:38 +07:00
f1e9ace73c
Reorganize [HOTP & TOTP] QRCode Builder ( #200 )
...
- [+] refactor(otpverifier): move QRCodeConfig to be a field of TOTPVerifier and HOTPVerifier structs
- [+] refactor(otpverifier): update BuildQRCode and SaveQRCodeImage methods to use the QRCodeBuilder field
- [+] test(otpverifier): update tests to set QRCodeBuilder field instead of passing QRCodeConfig as a parameter
- [+] refactor(example): update example code to set QRCodeBuilder field instead of passing QRCodeConfig as a parameter
2024-06-13 01:07:38 +07:00
d3da660da6
Docs [HOTP OCRA] Update Comment Related Verification ( #199 )
...
- [+] docs(ocraverifier): add clarification about signature verification in OCRA
2024-06-12 22:53:06 +07:00
024dd521c5
Docs [HOTP OCRA] Update Documentation ( #198 )
...
- [+] refactor(ocraverifier): add TODO comment for GenerateOTPURL function
2024-06-12 22:20:52 +07:00
77c2535747
Docs [OCRA Token] Update Comment ( #197 )
...
- [+] refactor(otpverifier): update comments for generateOCRA function
- [+] Remove redundant comments and clarify the purpose of counter and question parameters in the generateOCRA function.
2024-06-12 21:53:59 +07:00
b9fa8afae5
Improve Performance for HOTP OCRA ( #196 )
...
* Refactor OCRA Verify
- [+] refactor(otpverifier): simplify OCRA token comparison logic
* Reduce allocations per operation
- [+] refactor(benchmark_test.go): update benchmark results for OCRAVerify with reduced allocations per operation
- [+] refactor(hotp_ocra.go): optimize generateOCRA by preallocating data slice and using copy instead of append
- [+] refactor(hotp_ocra.go): simplify HOTP string formatting using fmt.Sprintf with width and padding options
2024-06-12 18:32:59 +07:00
e22ea04b1d
Docs [OCRA Token] Update Comments ( #195 )
...
- [+] refactor(otpverifier): add explanatory comment for generateOCRA input data
2024-06-12 16:38:43 +07:00
2d5c0af1d6
Improve [QR Code Builder] Support File Path ( #194 )
...
* Feat [QR Code Builder] FilePath
- [+] feat(otpverifier): add FilePath field to QRCodeConfig struct
- [+] test(otpverifier): add test cases for saving QR code image with file path
- [+] Test saving QR code image in the current directory when file path is not provided
- [+] Test saving QR code image in a temporary directory when file path is provided
- [+] feat(qrcode_builder): support saving QR code image to a specified file path
- [+] Use the file path from QRCodeConfig if provided, otherwise use the current directory
- [+] Create the full file path by joining the file path and filename
* Docs [pkg.go.dev] Update Documentation
- [+] feat(otpverifier): add FilePath field to QRCodeConfig struct for specifying the file path to save the QR code image
2024-06-12 14:42:49 +07:00
874491a91d
Fix [HOTP OCRA] Remove Unused Signature Parameter ( #193 )
...
- [+] refactor(OCRAVerifier): remove unused signature parameter from Verify method
- [+] docs(OCRAVerifier): add documentation explaining OCRA algorithm security and RFC 6287 compliance
2024-06-12 12:45:46 +07:00
de48cf53e3
Docs [Cryptographic Helper Function] Update Comment ( #192 )
...
- [+] refactor(otpverifier): add comments to explain the cryptoPow10n function and package helper functions
- [+] docs(otpverifier): clarify that package helper functions are related to cryptography and built based on expertise
2024-06-12 12:05:26 +07:00
06fe46afb3
Docs [Cryptographic Helper Function] ( #191 )
...
- [+] refactor(otpverifier): improve documentation for cryptoPow10n function
- [+] Key points:
- [+] The function calculates the value of 10 raised to the power of n (10ⁿ).
- [+] It uses recursive multiplication to compute the result.
- [+] The base case is when n ≤ 0, where the result is 1 (10⁰ = 1).
- [+] For n > 0, the function recursively multiplies 10 with the result of cryptoPow10n(n-1).
- [+] The function assumes that n is non-negative and returns 1 for negative values of n.
- [+] The purpose of the function is to calculate the appropriate modulo value based on the desired number of digits for HOTP and TOTP values.
- [+] The function is used in the truncation step of the HOTP and TOTP algorithms to ensure the resulting values have the specified number of digits.
- [+] The documentation includes a "Magic Calculator" section that explains the mathematical calculations performed by the function.
2024-06-11 19:16:54 +07:00
4fb2ff74e4
Docs [DecodeBase32WithPadding] Update Comment ( #190 )
2024-06-11 16:39:38 +07:00
783adbeea6
Improve [Cryptographic Helper Function] cryptoPow10n ( #189 )
2024-06-11 16:10:26 +07:00
9fc7ea83ce
Improve [HOTP OCRA] Bounds into Helper Function ( #188 )
2024-06-11 15:07:27 +07:00
153937cf77
Implement [Cryptographic Helper Function] cryptoPow10n ( #187 )
2024-06-11 12:26:24 +07:00
a3a9ec6a41
Docs [README] Update Documentation ( #186 )
2024-06-11 11:38:48 +07:00
54382320d1
Update Benchmark Result for TOTP ( #185 )
2024-06-11 10:47:07 +07:00
656b37f6dd
Improve [Helper Function] DecodeBase32WithPadding Testing ( #184 )
2024-06-11 07:28:33 +07:00
2614b0515f
Implement [Helper Function] "DecodeBase32WithPadding" ( #183 )
...
* Implement [Helper Function] "DecodeBase32WithPadding"
* Fix Testing
2024-06-11 03:10:10 +07:00
66a8837a7a
Update Benchmark Result ( #182 )
2024-06-10 19:06:27 +07:00
cff719e44e
Improve Docs [pkg.go.dev] Formatting ( #181 )
2024-06-10 17:04:31 +07:00
f559ed4adc
Add Benchmark for HOTP OCRA ( #180 )
2024-06-10 10:30:35 +07:00
