AddMember adds a new node to the etcd cluster, and subsequently wag.

Add a token to the database to add or overwrite a device for a user, may fail of the token does not meet complexity requirements.

Set device as authorized and clear authentication attempts.

FinaliseRegistration may or may not delete the token in question depending on whether the number of uses is <= 0.

Randomly generate a token for a specific username.

Get account lockout threshold setting.

Returns list of tokens.

IncrementAuthenticationAttempt Make sure that the attempts is always incremented first to stop race condition attacks.

Has the user recorded their MFA details.

Lock admin account and make them unable to login.

Unlock admin account.

Stop displaying MFA secrets for user.

Disable authentication for user.

StepDown when called on a leader node, to transfer ownership to another node (demoted).

UpdateDeviceConnectionDetails updates the endpoint we are receiving packets from and the associated cluster node I.e if data is coming in to node 3, all other nodes know that the session is only valid while connecting to node 3 this stops a race condition where an attacker uses a wireguard profile, but gets load balanced to another node member.

DTO.