Nathaniel McCallum <npmccallum(a)redhat.com> wrote
Mon, 23 May 2011 14:59:43 -0400:
| I have rebased Sumit's AuthHub yubikey plugin onto a new repo here:
|
https://github.com/npmccallum/krb5-anonsvn/tree/AuthHub
Great.
| This will allow proper merging with the upstream github repo. Let me
| know if I've missed anything.
I just made the ykclient method in our "otp" plugin (heavily based on
Sumits yubikey_otp plugin) use the client_id (a.k.a. API key) found in
the kdb rather than in configuration (krb5.conf) and verified it against
the YubiServe authentication server.
This work can be found in the otp-wip branch of
git://git.nordu.net/krb-otp. We have the somewhat dubious PA-FX-COOKIE
fixes in generic code sitting in that branch too, which I'd like to
discuss with MIT people before merging to a more proper branch.
I think I should push to a fork of npmccallum/krb5-anonsvn to github as
well, to be able to follow your work. What would be a good way for
rebasing on top of your AuthHub branch? My naïve tries with doing "git
pull --rebase" resulted in tons of conflicts in code I've never touched,
likely conflicts that you've already solved when you did your rebase.
My git skills are clearly imperfect. Hints much appreciated.