Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update rlm_totp to follow the standards better #4809

Open
alandekok opened this issue Nov 21, 2022 · 0 comments
Open

Update rlm_totp to follow the standards better #4809

alandekok opened this issue Nov 21, 2022 · 0 comments
Labels
feature enhancement category: a new feature (an extension of functionality) v3.2.x meta: relates to the v3.2.x branch v4.0.x meta: relates to the v4.0.x branch

Comments

@alandekok
Copy link
Member

Message

Implement window and anti-retry of https://datatracker.ietf.org/doc/html/rfc6238#section-5.2

  • allow for a configurable window (if current OTP doesn't match, try +/- window)
  • allow for tracking which tokens have already been used. This likely requires adding attributes such as "old-token", and asking the user to save them somewhere, probably in the cache module
@alandekok alandekok added feature enhancement category: a new feature (an extension of functionality) v4.0.x meta: relates to the v4.0.x branch close state: auto close the issue v3.2.x meta: relates to the v3.2.x branch and removed close state: auto close the issue labels Nov 21, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature enhancement category: a new feature (an extension of functionality) v3.2.x meta: relates to the v3.2.x branch v4.0.x meta: relates to the v4.0.x branch
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@alandekok