Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-2732

Elytron - it should also be possible to store OTP algorithm on security realm level

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • Security
    • None

      It should be possible to store OTP algorithm name on security realm level too.

      Using of the OTP SASL mechanism requires modifiable realm and currently only ldap-realm integration is finished.

      The ldap-realm now requires to store the algorithm name into an LDAP attribute together with the rest of OTP configuration (seed, hash, sequence), but this can be limiting (or space vasting) when the algorithm is the same for all users in the realm. There should be a possibility to configure the OTP algorithm name also on the realm level and share it for users. Make it an alternative for ldap-realm.identity-mapping.otp-credential-mapper.algorithm-from configuration.

              Unassigned Unassigned
              josef.cacek@gmail.com Josef Cacek (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: