infrastructure/ansible
1
0
Fork 0
Code Pull requests 7 Activity Actions
ansible/files/2fa/pam_url.conf.stg.fedoraproject.org
Patrick Uiterwijk 998b1baf74 Due to qa firewalls, use the original IPs 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
2019-05-24 10:19:44 +02:00

21 lines
851 B
Org Mode
Raw Blame History

pam_url:
{
settings:
{
url = "https://fas-all.stg.phx2.fedoraproject.org:8443/"; # URI to fetch
returncode = "OK"; # The remote script/cgi should return a 200 http code and this string as its only results
userfield = "user"; # userfield name to send
passwdfield = "token"; # passwdfield name to send
extradata = "&do=login"; # extradata to send
prompt = "Password+Token: "; # password prompt
};
ssl:
{
verify_peer = true; # Should we verify SSL ?
verify_host = true; # Should we verify the CN in the SSL cert?
client_cert = "/etc/pki/tls/private/totpcgi.pem"; # file to use as client-side certificate
client_key = "/etc/pki/tls/private/totpcgi.pem"; # file to use as client-side key (can be same file as above if a single cert)
ca_cert = "/etc/pki/tls/private/totpcgi-ca.cert";
};
};
View git blame Copy permalink