[PULL] OpenVPN Two-Factor Authentication

public inbox for development@lists.ipfire.org
 help / color / mirror / Atom feed

From: Michael Tremer <michael.tremer@ipfire.org>
To: development@lists.ipfire.org
Subject: [PULL] OpenVPN Two-Factor Authentication
Date: Fri, 17 Jun 2022 11:40:13 +0100	[thread overview]
Message-ID: <EC8693EB-97FF-4223-A913-69D79173387B@ipfire.org> (raw)

[-- Attachment #1: Type: text/plain, Size: 6658 bytes --]

The following changes since commit 7e4af6eb54bcbd1fa651610d8f0a99d86270042c:

  oath-toolkit: New package (2022-06-17 10:20:14 +0000)

are available in the Git repository at:

  https://git.ipfire.org/pub/git/people/ms/ipfire-2.x.git openvpn-2fa

for you to fetch changes up to 3740b7ad3ade3ff9d645bc3dca709791d012bbc2:

  ovpnmain.cgi: URI encode OTPAuth String in QRCode (2022-06-17 10:22:31 +0000)

----------------------------------------------------------------
Michael Tremer (19):
      qrencode: Rename package and update checksum
      oauth-toolkit: Update checksum and drop unnecessary fields
      perl-File-Remove: Update checksum and drop unnecessary fields
      perl-Imager: Update checksum and remove unnecessary fields
      perl-Imager-QRCode: Update checksum and remove unnecessary fields
      perl-MIME-Base32: Update checksum and remove unnecessary fields
      perl-Module-Build: Update checksum and remove unnecessary fields
      perl-Module-Install: Update checksum and remove unnecessary fields
      perl-Module-ScanDeps: Update checksum and remove unnecessary fields
      perl-YAML-Tiny: Update checksum and remove unnecessary fields
      openpvn-2fa: Fix rootfiles
      ovpnmain.cgi: Disable sending any error messages to the browser again
      ovpnmain.cgi: Load all modules at the beginning
      openvpn-2fa: Import a prototype of an authenticator
      openvpn-2fa: Drop the previous authentication handler
      openvpn-2fa: Enable management socket for RW server
      openvpn-2fa: Configure fake authentication credentials
      openvpn-authenticator: Don't process configuration when row is too short
      openvpn-authenticator: Always return general connection data

Timo Eissler (19):
      libqrcode: New package
      perl-File-Remove: New package
      perl-Module-Build: New package
      perl-Module-ScanDeps: New package
      perl-YAML-Tiny: New package
      perl-Module-Install: New package
      perl-Imager: New package
      perl-Imager-QRCode: New package
      perl-MIME-Base32: New package
      OpenVPN: Add support for 2FA / One-Time Password
      ovpnmain.cgi: Fix comparison operators
      ovpnmain.cgi: Fix OTP secret handling
      openvpn-authenticator: Generate TOTP instead of HOTP codes
      openvpn-authenticator: Return only available data
      openvpn-authenticator: Fix call of _client_auth_successful
      openvpn-authenticator: Change event and environment handling
      ovpnmain.cgi: Remove trailing newline from OTP secret
      perl-URI-Encode: New package
      ovpnmain.cgi: URI encode OTPAuth String in QRCode

 config/httpd/vhosts.d/ipfire-interface-ssl.conf    |   2 +-
 config/httpd/vhosts.d/ipfire-interface.conf        |   2 +-
 config/ovpn/openvpn-authenticator                  | 381 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 config/rootfiles/{packages => common}/oath-toolkit |   4 +-
 config/rootfiles/common/openvpn                    |   1 +
 config/rootfiles/common/perl-File-Remove           |   4 ++
 config/rootfiles/common/perl-Imager                | 165 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 config/rootfiles/common/perl-Imager-QRCode         |   5 ++
 config/rootfiles/common/perl-MIME-Base32           |   4 ++
 config/rootfiles/common/perl-Module-Build          |  51 +++++++++++++++++++
 config/rootfiles/common/perl-Module-Install        |  66 +++++++++++++++++++++++++
 config/rootfiles/common/perl-Module-ScanDeps       |   8 +++
 config/rootfiles/common/perl-URI-Encode            |   4 ++
 config/rootfiles/common/perl-YAML-Tiny             |   6 +++
 config/rootfiles/common/qrencode                   |   8 +++
 html/cgi-bin/ovpnmain.cgi                          |  93 +++++++++++++++++++++++++++++++++-
 html/html/images/qr-code.png                       | Bin 0 -> 760 bytes
 html/html/images/qr-code.svg                       |  49 ++++++++++++++++++
 langs/de/cgi-bin/de.pl                             |   4 ++
 langs/en/cgi-bin/en.pl                             |   4 ++
 lfs/oath-toolkit                                   |  15 +-----
 lfs/openvpn                                        |   4 ++
 lfs/perl-File-Remove                               |  80 ++++++++++++++++++++++++++++++
 lfs/perl-Imager                                    |  80 ++++++++++++++++++++++++++++++
 lfs/perl-Imager-QRCode                             |  80 ++++++++++++++++++++++++++++++
 lfs/perl-MIME-Base32                               |  80 ++++++++++++++++++++++++++++++
 lfs/perl-Module-Build                              |  80 ++++++++++++++++++++++++++++++
 lfs/perl-Module-Install                            |  80 ++++++++++++++++++++++++++++++
 lfs/perl-Module-ScanDeps                           |  79 +++++++++++++++++++++++++++++
 lfs/perl-URI-Encode                                |  80 ++++++++++++++++++++++++++++++
 lfs/perl-YAML-Tiny                                 |  80 ++++++++++++++++++++++++++++++
 lfs/qrencode                                       |  80 ++++++++++++++++++++++++++++++
 make.sh                                            |  10 ++++
 src/misc-progs/openvpnctrl.c                       |  21 ++++++++
 34 files changed, 1692 insertions(+), 18 deletions(-)
 create mode 100644 config/ovpn/openvpn-authenticator
 rename config/rootfiles/{packages => common}/oath-toolkit (99%)
 create mode 100644 config/rootfiles/common/perl-File-Remove
 create mode 100644 config/rootfiles/common/perl-Imager
 create mode 100644 config/rootfiles/common/perl-Imager-QRCode
 create mode 100644 config/rootfiles/common/perl-MIME-Base32
 create mode 100644 config/rootfiles/common/perl-Module-Build
 create mode 100644 config/rootfiles/common/perl-Module-Install
 create mode 100644 config/rootfiles/common/perl-Module-ScanDeps
 create mode 100644 config/rootfiles/common/perl-URI-Encode
 create mode 100644 config/rootfiles/common/perl-YAML-Tiny
 create mode 100644 config/rootfiles/common/qrencode
 create mode 100644 html/html/images/qr-code.png
 create mode 100644 html/html/images/qr-code.svg
 create mode 100644 lfs/perl-File-Remove
 create mode 100644 lfs/perl-Imager
 create mode 100644 lfs/perl-Imager-QRCode
 create mode 100644 lfs/perl-MIME-Base32
 create mode 100644 lfs/perl-Module-Build
 create mode 100644 lfs/perl-Module-Install
 create mode 100644 lfs/perl-Module-ScanDeps
 create mode 100644 lfs/perl-URI-Encode
 create mode 100644 lfs/perl-YAML-Tiny
 create mode 100644 lfs/qrencode

                 reply	other threads:[~2022-06-17 10:40 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=EC8693EB-97FF-4223-A913-69D79173387B@ipfire.org \
    --to=michael.tremer@ipfire.org \
    --cc=development@lists.ipfire.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox