mirror of
https://github.com/kanidm/kanidm.git
synced 2025-02-23 12:37:00 +01:00
bec8c9058c
* Add keystore to unix_user_online_auth_init Himmelblau needs this to check whether the device is enrolled in the domain (via the presence of TPM keys), to know whether to attempt Windows Hello PIN auth, or to enroll first in the domain. Signed-off-by: David Mulder <dmulder@samba.org> * Implement PIN setup After enrolling in a domain, Himmelblau will prompt the user to choose a pin, which will be the auth value for an associated Windows Hello TPM key. We loop here until the values match. Otherwise no validation is performed. Validation can be done by the id provider, and can send an additional request to PAM if the PIN is invalid. Signed-off-by: David Mulder <dmulder@samba.org> * Add Pin authentication After setting up a Windows Hello pin, users can authentication using this pin. Signed-off-by: David Mulder <dmulder@samba.org> |
||
|---|---|---|
| .. | ||
| src | ||
| build.rs | ||
| Cargo.toml | ||