Reviewed: https://review.opendev.org/647655 Committed: https://git.openstack.org/cgit/openstack/keystone/commit/?id=5572d013004afe3d1a483d5b7ad6e3383e973ae1 Submitter: Zuul Branch: master
commit 5572d013004afe3d1a483d5b7ad6e3383e973ae1 Author: Adrian Turjak <adri...@catalyst.net.nz> Date: Tue Mar 26 18:22:21 2019 +1300 Add support for previous TOTP windows Update the TOTP auth plugin so that it can be configured to allow a passcode from a given number of windows back to still work. This gives TOTP some slighly better UX so by default at least one passcode back will still work. Can be disabled, or more windows added for clouds less worried about security and more about clock drift. Change-Id: I8ba4127a365392f0d0e9de5fd9c979750c354dc7 Closes-Bug: #1839577 ** Changed in: keystone Status: In Progress => Fix Released -- You received this bug notification because you are a member of Yahoo! Engineering Team, which is subscribed to OpenStack Identity (keystone). https://bugs.launchpad.net/bugs/1839577 Title: totp should support previous windows Status in OpenStack Identity (keystone): Fix Released Bug description: TOTP auth should allow at least 1 previous window to be included during auth to limit time sync issues and generally better UX. Optionally this should be configurable (or disabled). To manage notifications about this bug go to: https://bugs.launchpad.net/keystone/+bug/1839577/+subscriptions -- Mailing list: https://launchpad.net/~yahoo-eng-team Post to : yahoo-eng-team@lists.launchpad.net Unsubscribe : https://launchpad.net/~yahoo-eng-team More help : https://help.launchpad.net/ListHelp