summaryrefslogtreecommitdiff
path: root/pam
Commit message (Collapse)AuthorAgeFilesLines
* Removed some debug statements and better error handlingHEADmasterSam Chudnick2023-06-111-14/+0
|
* Support both TLS encrypted sessions and plaintext sessionsSam Chudnick2022-07-041-9/+37
| | | | | | | | | | | | | Added support for both TLS and plaintext connections. Server can accept both types of connection simultaneously or in different combinations (i.e encrypted client and plaintext PAM). Added options for specifying dedicated TLS ports on server. Added --plain options for client and PAM to force plaintext connections, default is to use encrypted connections. Configuring encrypted client and PAM connections and plaintext server connections allows for use of a reverse proxy setup with something like nginx. This will avoid having to expose the MFA server directly in setups that traverse the internet.
* Implemented TLS encrypted connectionsSam Chudnick2022-07-041-7/+23
| | | | | | Implemented TLS encrypted connections. Added command line argument and configuration file option to accept invalid (self-signed) certificates. Fixed a couple of unrelated issues.
* Properly implemented pam_sm_setcredSam Chudnick2022-07-031-23/+43
| | | | | | Properly implemented pam_sm_setcred and handle any flags that may be passed. Split running of python script and getting status into a separate function.
* Renamed PAM python script. Slightly improved error handlingSam Chudnick2022-07-031-2/+9
|
* Add simple MakefileSam Chudnick2022-07-021-0/+14
|
* More robust error handling. Updated pam_sm_setcred.Sam Chudnick2022-07-021-4/+11
| | | | | Handle issues with getting data from PAM more robustly. Change pam_sm_setcred to return PAM_SUCCESS for now.
* Read options from config fileSam Chudnick2022-07-021-2/+38
| | | | | | | Set a standardized configuration file location and read options from there. Allow for specifiying alternate location on command line. Options can still be specified on the command line, and any command line options take priority over those given in the configuration file.
* Added support for TOTPSam Chudnick2022-06-301-5/+19
| | | | | | Added TOTP as an MFA option. Also made a couple of of minor changes. Changed all database connections to use with statement. Read some options from a config file.
* Initial commitSam Chudnick2022-06-272-0/+160