We should remove opportunity to change self role for admin

Once a user verified his phone with a 2FA,
he can activate 2FA with Google Auth.

We need to generate a seed for TOTP with a QR code
The user needs to scan or enter the seed
We need to ask him to clearly write down the seed on a piece of paper.

Then user can enter a 2FA code and it should activate the 2FA.

OTP Sign in management api

Abiltity to receive and sign a JSON object if the otp code is valid

AppLogic

{
  uid: 'ID4242',
  otp: 432567,
  payload: "BASE64_ENCODED_JSON_OBJECT"
}

Validation steps:
1- Check UID exist
2- Check if otp is valid
3- Check base64 is valid
4- Check if payload is valid json after decoding

DO:

• Sign the payload and return an RFC 7516 full json object using multi-sig-jwt gem

Validates otp for user(uid) and sign the payload with a JWT and
returns it a structure like:

     {
      "payload":
       "eyJpc3MiOiJqb2UiLA0KICJleHAiOjEzMDA4MTkzODAsDQogImh0dHA6Ly9leGF
        tcGxlLmNvbS9pc19yb290Ijp0cnVlfQ",
      "signatures":[
       {"protected":"eyJhbGciOiJSUzI1NiJ9",
        "header":
         {"kid":"2010-12-29"},
        "signature":
         "cC4hiUPoj9Eetdgtv3hF80EGrhuB__dzERat0XF9g2VtQgr9PJbu3XOiZj5RZ
          mh7AAuHIm4Bh-0Qc_lF5YKt_O8W2Fp5jujGbds9uJdbF9CUAr7t1dnZcAcQjb
          KBYNX4BAynRFdiuB--f_nZLgrnbyTyWzO75vRK5h6xBArLIARNPvkSjtQBMHl
          b1L07Qe7K0GarZRmB_eSN9383LcOLn6_dO--xi12jzDwusC-eOkHWEsqtFZES
          c6BfI7noOPqvhJ1phCnvWh6IeYI2w9QOYEUipUTI8np6LbgGY9Fs98rqVt5AX
          LIhWkWywlVmtVrBp0igcN_IoypGlUPQGe77Rw"},
       {"protected":"eyJhbGciOiJFUzI1NiJ9",
        "header":
         {"kid":"e9bc097a-ce51-4036-9562-d2ade882db0d"},
        "signature":
         "DtEhU3ljbEg8L38VWAfUAqOyKAM6-Xx-F4GawxaepmXFCgfTjDxw5djxLa8IS
          lSApmWQxfKTUJqPP3-Kg6NU1Q"}]
     }

Layout should be very lite,
centered fixed, but mobile compatible.

We probably don't need a navbar header and footer

we need simple text links around the main content box

Rake db:seed with test application only if not production

Add dropdown to documents#new

Admin panel fixes:

1. Fixes regarding with tables styles;
2. Fixes regarding with redirecting in the application page;
3. Fixes regarding with notifications styles;

On the client side member needs to have ability to input information and upload a photo of document

It looks like this in peatio right now so we should have something similar

And on the admin panel we need to add ability to verify a member

Add config file with ability to export with url links:

• custom css
• custom js
• logo

Should use environment variable for admin email
as example: ADMIN_USER=[email protected]

Fields:

• Email
• Password (encrypted)
• role (small text string: admin, accountant, operator, guest, member)
• level (unsigned int: 0,1,2,3,4)
• state (active)

Confirm your email will provide level=1 and state=active

@gfedorenko please do it

Handle issue when user tried use phone number, which already exist in database

Implement 2FA for login and withdraw

@gfedorenko

@mod Do we need to refresh spec/models tests? As I understand that tests don't match with actual models data.

Step to reproduce:

1. Pass the verification to the step - "uploading documents";
2. Get back to the step "verify your mobile phone" by clicking on browser button "Back"
   Actual result:
   User has been stuck on step "verify your mobile phone".
   Expected result:
   User can not get back to already passed step of verification.

@spavlishak
Please find here screen "Barong Authenticator Code 2":
https://zpl.io/V0MGqwO

We need a role for accessing only profiles page on admin panel.

https://zpl.io/V0MGqwO
Barong/Barong 2-factor 01d1

@Mons-web

paetio.tech 😞

Need to add field level for Account to display level of verification

Phone verification has 2 purposes :
1- Verify profile level=2 (email is level=1)
2- 2FA with an SMS check

Account has_many Phones

Each users can add and verify several mobile phone numbers
each one of them will need an sms confirmation from twillio to be enabled

Any phone can be used for 2FA challange.

We need to parse phone to list Country in Phones tables.

Add dropdown for roles with admin, member, etc
I think we can use enum to make it nice, and easy to add new roles.