From b776003cf55e1035ac83186e44f72764e52e9e0d Mon Sep 17 00:00:00 2001 From: goodNETnick Date: Mon, 7 Feb 2022 02:04:28 -0500 Subject: ocserv: T4231: Added OTP support for Openconnect 2FA --- .../include/auth-local-users.xml.i | 69 ++++++++++++++++++++++ 1 file changed, 69 insertions(+) (limited to 'interface-definitions/include') diff --git a/interface-definitions/include/auth-local-users.xml.i b/interface-definitions/include/auth-local-users.xml.i index 8ef09554e..add2fc8e1 100644 --- a/interface-definitions/include/auth-local-users.xml.i +++ b/interface-definitions/include/auth-local-users.xml.i @@ -7,6 +7,10 @@ Username used for authentication + + txt + Username used for authentication + #include @@ -15,6 +19,71 @@ Password used for authentication + + + 2FA OTP authentication parameters + + + + + Token Key Secret key for the token algorithm (see RFC 4226) + + txt + OTP key in hex-encoded format + + + [a-fA-F0-9]{20,10000} + + Key name must in hex be alphanumerical only (min. 20 hex characters) + + + + + Optional. Number of digits in OTP code (default: 6) + + u32:6-8 + Number of digits in OTP code (default: 6) + + + + + Number of digits in OTP code must be between 6 and 8 + + + + + Optional. Time tokens interval in seconds (for time tokens) (default: 30) + + u32:5-86400 + Time tokens interval in seconds (for time tokens). (default: 30) + + + + + Time token interval must be between 5 and 86400 seconds + + + + + Optional. Token type (default: hotp-time) + + hotp-time + time-based OTP algorithm + + + hotp-event + event-based OTP algorithm + + + (hotp-time|hotp-event) + + + hotp-time hotp-event + + + + + -- cgit v1.2.3