Page MenuHomeDevCentral
Create Task
Maniphest T2309

YubiCloud authentication
Open, NormalPublic
Actions

Description

Similar to Keruald GitHub, could we have a Keruald Tokens to validate security tokens like Yubico keys?

A first need for Zed is to replace YubiCloud authentication, as Auth_Yubico PHP class is deprecated and points to non existing anymore endpoints.

Plan:

  • create a new component in rKERUALD for security tokens and publish it under keruald/tokens
  • implement OTP validation protocol in a Yubico\OTP class
  • verify signature, with code as described in the protocol (keruald/github XHubSignature verification code can be helpful there)

Reference: https://developers.yubico.com/OTP/Specifications/OTP_validation_protocol.html

Related Objects

Event Timeline

dereckson triaged this task as Normal priority.Tue, Apr 14, 22:12
dereckson created this task.
dereckson moved this task from Backlog to Dev on the good-first-issue board.
dereckson moved this task from Backlog to Keruald development on the Zed board.

Once this code is created, per eb9fa936f36a, create a feature request to Obsidian to support this as second factor.

dereckson added a project: Obsidian.Tue, Apr 14, 22:14
dereckson moved this task from Backlog to To watch / External on the Obsidian board.
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator