git.ipfire.org Git - people/pmueller/ipfire-2.x.git/commit

author	Michael Tremer <michael.tremer@ipfire.org>
	Wed, 4 May 2022 13:46:41 +0000 (14:46 +0100)
committer	Michael Tremer <michael.tremer@ipfire.org>
	Fri, 17 Jun 2022 10:20:18 +0000 (10:20 +0000)
commit	339b84d50910b1c258304bff68d1f875e8b2a25a
tree	8f213fc0e414650ffb959a66e72e85138e105189	tree \| snapshot
parent	c63a54f0908f8dcce2fde30d4476e82dbc2c3bfd	commit \| diff

openvpn-2fa: Import a prototype of an authenticator

This script runs aside of OpenVPN and connects to the management socket.
On the socket, OpenVPN will post any new clients trying to authenticate
which will be handled by the authenticator.

If a client has 2FA enabled, it will be challanged for the current token
which will then be checked in a second pass.

Clients which do not have 2FA enabled will just be authenticated no
matter what and tls-verify will have handled the rest.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>

config/ovpn/openvpn-authenticator	[new file with mode: 0644]	blob
config/rootfiles/common/openvpn		diff \| blob \| blame \| history
lfs/openvpn		diff \| blob \| blame \| history
src/misc-progs/openvpnctrl.c		diff \| blob \| blame \| history