Am 11.04.19 um 04:07 schrieb Eric Thorpe: > Hi All, > > This patch allows for a client reason to be returned from an auth plugin > and sent to the connecting client on an auth fail. This change is > backwards compatible with existing plugins and hasn't caused issues with > existing plugins like the included pam plugin in our testing. The main > purpose of this change is to support dynamic challenge/response from > plugins, currently this is only possible from the management interface. > > Example usage for this change can be found in a new plugin here modified > from the included PAM plugin - > https://github.com/thesparklabs/openvpn-two-factor-extensions/tree/master/yubikey-u2f-pam-plugin >
Same as for the 1/2 patch, I would like to postpone this after the auth-token set has been merged. The patch "Sent indication that a session is expired to clients" of auth-token also does the renaming from man_def_auth_set_client_reason to auth_set_client_reason so this creates a big conflict. Arne
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
