JLE-ATS commented on PR #577: URL: https://github.com/apache/guacamole-client/pull/577#issuecomment-1748557095
Hello, I hope it's OK to add a comment on a closed PR. I am new to this project. Let me know if I should do things differently. I am currently in the process of deploying Guacamole in my company and I think I need this specific feature. Here is why. I am installing Guacamole with Ansible. Some configurations (user groups, connection groups, permissions) are set through the REST API. If I enable TOTP, I can't use the REST API and thus, configure Guacamole. If this feature was added, I could : 1. add "totp-disabled-group: XXX" to my guacamole.properties, 2. add the XXX group through the REST API, 3. add my API user to the XXX group through the REST API, 4. enable the TOTP extension. 5. Restart tomcat (then TOTP is working, but disabled for the API's user). Then I would proceed with the rest of the configuration through the API, as usual. Is it possible to consider this PR again or is there another solution I am not aware of ? I have found another PR ([911](https://github.com/apache/guacamole-client/pull/911)) which talk about disabling MFA based on IP addresses. It could do the trick, but it seems less relevant to my use case. Best regards -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
