feat(step-up): add stepup validator #176

TomerFrontegg · 2023-11-27T16:15:16Z

No description provided.

github-actions · 2023-11-27T16:15:51Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions · 2023-11-28T08:47:03Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions · 2023-11-28T08:49:03Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions · 2023-11-28T08:50:21Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions · 2023-11-28T08:53:00Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions · 2023-11-28T08:54:27Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions · 2023-11-28T09:04:18Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

src/clients/identity/exceptions/missing-amr.exception.ts

src/clients/identity/exceptions/missing-acr.exception.ts

src/clients/identity/exceptions/index.ts

Co-authored-by: raz-shlomo-frontegg <[email protected]>

github-actions · 2023-11-28T09:34:12Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions · 2023-11-28T09:35:12Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions · 2023-11-28T09:39:12Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions · 2023-11-28T09:58:20Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions · 2023-11-28T10:01:01Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

github-actions · 2023-11-28T10:08:29Z

# npm audit report

axios  0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/axios
  @slack/web-api  <=6.9.0
  Depends on vulnerable versions of axios
  node_modules/@slack/web-api

2 moderate severity vulnerabilities

To address issues that do not require attention, run:
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force

# [5.3.0-alpha.1](5.2.1...5.3.0-alpha.1) (2023-11-28) ### Features * **step-up:** add stepup validator ([#176](#176)) ([94559ae](94559ae))

# [5.3.0](5.2.1...5.3.0) (2024-01-30) ### Bug Fixes * **entitlements:** bump js common package version ([b3691db](b3691db)) * **step-up:** add sso as amr method for unenrolled mfa users ([cc9e916](cc9e916)) * **step-up:** export type ([e66abb3](e66abb3)) * **step-up:** export validator ([f131d36](f131d36)) * **step-up:** fix validation condition ([2cd16f4](2cd16f4)) ### Features * **plans:** add plan evaluation to entitlements ([c1de677](c1de677)) * **step-up:** add stepup validator ([#176](#176)) ([94559ae](94559ae))

TomerFrontegg requested a review from eran-frontegg as a code owner November 27, 2023 16:15

TomerFrontegg force-pushed the FR-14361 branch from 0cfe71e to 2c3a246 Compare November 28, 2023 08:48

TomerFrontegg force-pushed the FR-14361 branch from 2c3a246 to 58b32e4 Compare November 28, 2023 08:49

TomerFrontegg force-pushed the FR-14361 branch from 58b32e4 to a1fedfd Compare November 28, 2023 08:52

feat(stepup): add stepup validator

74c40ae

TomerFrontegg force-pushed the FR-14361 branch from a1fedfd to 74c40ae Compare November 28, 2023 08:53

change IF to be stepup type or boolean

329a41b

raz-shlomo-frontegg reviewed Nov 28, 2023

View reviewed changes

src/clients/identity/exceptions/missing-amr.exception.ts Outdated Show resolved Hide resolved

src/clients/identity/exceptions/missing-acr.exception.ts Outdated Show resolved Hide resolved

raz-shlomo-frontegg reviewed Nov 28, 2023

View reviewed changes

src/clients/identity/exceptions/index.ts Show resolved Hide resolved

Update src/clients/identity/exceptions/missing-amr.exception.ts

b38ff5b

Co-authored-by: raz-shlomo-frontegg <[email protected]>

change amr to AMR

6904ba1

change optional max age

1c3bbfb

add usage example

9298771

fix optional

0380889

fix test

d743ead

eran-frontegg approved these changes Nov 28, 2023

View reviewed changes

Merge branch 'next' into FR-14361

6394e77

eran-frontegg merged commit 94559ae into next Nov 28, 2023

yossi-frontegg pushed a commit that referenced this pull request Jan 30, 2024

chore(release): 5.3.0-alpha.1 [skip ci]

60cc265

# [5.3.0-alpha.1](5.2.1...5.3.0-alpha.1) (2023-11-28) ### Features * **step-up:** add stepup validator ([#176](#176)) ([94559ae](94559ae))

feat(step-up): add stepup validator #176

feat(step-up): add stepup validator #176

Uh oh!

Conversation

TomerFrontegg commented Nov 27, 2023

Uh oh!

github-actions bot commented Nov 27, 2023

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

Uh oh!

Uh oh!

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

github-actions bot commented Nov 28, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants