5572d01300
Update the TOTP auth plugin so that it can be configured to allow a passcode from a given number of windows back to still work. This gives TOTP some slighly better UX so by default at least one passcode back will still work. Can be disabled, or more windows added for clouds less worried about security and more about clock drift. Change-Id: I8ba4127a365392f0d0e9de5fd9c979750c354dc7 Closes-Bug: #1839577
7 lines
275 B
YAML
7 lines
275 B
YAML
---
|
|
features:
|
|
- >
|
|
[`bug 1839577 <https://bugs.launchpad.net/keystone/+bug/1839577>`_]
|
|
TOTP now allows by default the code from the previous time window
|
|
to be considered valid as part of auth. This can be disabled, or
|
|
the extended up to ten previous windows. |