[GitHub] [cloudstack] stephankruggg commented on a diff in pull request #6924: [Draft] User two factor authentication

Mon, 28 Nov 2022 10:19:17 -0800 


stephankruggg commented on code in PR #6924:
URL: https://github.com/apache/cloudstack/pull/6924#discussion_r1033885197


##########
server/src/main/java/com/cloud/user/AccountManagerImpl.java:
##########
@@ -315,6 +322,31 @@ public class AccountManagerImpl extends ManagerBase 
implements AccountManager, M
     private int _cleanupInterval;
     private List<String> apiNameList;
 
+    protected static Map<String, UserTwoFactorAuthenticator> 
userTwoFactorAuthenticationProvidersMap = new HashMap<>();
+
+    private List<UserTwoFactorAuthenticator> 
userTwoFactorAuthenticationProviders;
+
+    static ConfigKey<Boolean> enableUserTwoFactorAuthentication = new 
ConfigKey<Boolean>("Advanced",
+            Boolean.class,
+            "enable.user.two.factor.authentication",
+            "false",
+            "Determines whether two factor authentication is enabled or not. 
This can be configured at domain level also",

Review Comment:
   ```suggestion
               "Determines whether two factor authentication is enabled or not. 
This can also be configured at domain level.,
   ```



##########
api/src/main/java/com/cloud/user/AccountService.java:
##########
@@ -124,4 +126,18 @@ User createUser(String userName, String password, String 
firstName, String lastN
     public Map<String, String> getKeys(GetUserKeysCmd cmd);
 
     public Map<String, String> getKeys(Long userId);
+
+    /**
+     * Lists user two-factor authentication provider plugins
+     * @return list of providers
+     */
+    List<UserTwoFactorAuthenticator> 
listUserTwoFactorAuthenticationProviders();
+
+    /**
+     * Find user two factor authenticator provider by domain ID

Review Comment:
   ```suggestion
        * Finds user two factor authenticator provider by domain ID
   ```



##########
server/src/main/java/com/cloud/user/AccountManagerImpl.java:
##########
@@ -315,6 +322,31 @@ public class AccountManagerImpl extends ManagerBase 
implements AccountManager, M
     private int _cleanupInterval;
     private List<String> apiNameList;
 
+    protected static Map<String, UserTwoFactorAuthenticator> 
userTwoFactorAuthenticationProvidersMap = new HashMap<>();
+
+    private List<UserTwoFactorAuthenticator> 
userTwoFactorAuthenticationProviders;
+
+    static ConfigKey<Boolean> enableUserTwoFactorAuthentication = new 
ConfigKey<Boolean>("Advanced",
+            Boolean.class,
+            "enable.user.two.factor.authentication",
+            "false",
+            "Determines whether two factor authentication is enabled or not. 
This can be configured at domain level also",
+            false,
+            ConfigKey.Scope.Domain);
+
+    ConfigKey<Boolean> mandateUserTwoFactorAuthentication = new 
ConfigKey<Boolean>("Advanced",
+            Boolean.class,
+            "mandate.user.two.factor.authentication",
+            "false",
+            "Determines whether to make the two factor authentication 
mandatory or not. This can be configured at domain level also",

Review Comment:
   ```suggestion
               "Determines whether to make the two factor authentication 
mandatory or not. This can also be configured at domain level.",
   ```



-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Reply via email to