git.ipfire.org Git - people/teissler/ipfire-2.x.git/commit

author	Michael Tremer <michael.tremer@ipfire.org>
	Wed, 4 May 2022 13:46:41 +0000 (14:46 +0100)
committer	Michael Tremer <michael.tremer@ipfire.org>
	Mon, 16 May 2022 14:01:08 +0000 (14:01 +0000)
commit	8ec1f4847f7df77aecaadbffba4933c09e803e8b
tree	53430072472c235583cbfa347256131c32c5080d	tree \| snapshot
parent	a0ee78ece60e647000d3b3c516f5e886ec343036	commit \| diff

openvpn-2fa: Import a prototype of an authenticator

This script runs aside of OpenVPN and connects to the management socket.
On the socket, OpenVPN will post any new clients trying to authenticate
which will be handled by the authenticator.

If a client has 2FA enabled, it will be challanged for the current token
which will then be checked in a second pass.

Clients which do not have 2FA enabled will just be authenticated no
matter what and tls-verify will have handled the rest.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>

config/ovpn/openvpn-authenticator	[new file with mode: 0644]	blob
config/rootfiles/common/openvpn		diff \| blob \| blame \| history
lfs/openvpn		diff \| blob \| blame \| history
src/misc-progs/openvpnctrl.c		diff \| blob \| blame \| history