summaryrefslogtreecommitdiff
path: root/pam/pam_mfa.py
Commit message (Collapse)AuthorAgeFilesLines
* Support both TLS encrypted sessions and plaintext sessionsSam Chudnick2022-07-041-9/+37
| | | | | | | | | | | | | Added support for both TLS and plaintext connections. Server can accept both types of connection simultaneously or in different combinations (i.e encrypted client and plaintext PAM). Added options for specifying dedicated TLS ports on server. Added --plain options for client and PAM to force plaintext connections, default is to use encrypted connections. Configuring encrypted client and PAM connections and plaintext server connections allows for use of a reverse proxy setup with something like nginx. This will avoid having to expose the MFA server directly in setups that traverse the internet.
* Implemented TLS encrypted connectionsSam Chudnick2022-07-041-7/+23
| | | | | | Implemented TLS encrypted connections. Added command line argument and configuration file option to accept invalid (self-signed) certificates. Fixed a couple of unrelated issues.
* Renamed PAM python script. Slightly improved error handlingSam Chudnick2022-07-031-0/+157