Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
documentation:2.1:u2f [2019/06/09 11:54]
cmaudoux [Configuration]
documentation:2.1:u2f [2020/01/30 11:31] (current)
coudot [Prerequisites and dependencies]
Line 9: Line 9:
 ===== Prerequisites and dependencies ===== ===== Prerequisites and dependencies =====
  
-This feature uses [[https://​metacpan.org/​pod/​Crypt::​U2F::​Server::​Simple|Crypt::​U2F::​Server::​Simple]] ​that is only available on CPAN repository for now. Before compiling it, you must install Yubico'​s C library headers ​(called libu2f-server-dev on Debian).+This feature uses [[https://​metacpan.org/​pod/​Crypt::​U2F::​Server::​Simple|Crypt::​U2F::​Server::​Simple]]
 + 
 +It is available ​as package ​on Debian: 
 +<​code>​ 
 +apt install libcrypt-u2f-server-perl 
 +</​code>​ 
 + 
 +For other systems, use CPAN. Before compiling it, you must install Yubico'​s C library headers.
  
 <note important>​An HTTPS portal is required to use U2F</​note>​ <note important>​An HTTPS portal is required to use U2F</​note>​
Line 20: Line 27:
   * **Allow users to remove U2F key**: If enabled, users can unregister enrolled U2F device.   * **Allow users to remove U2F key**: If enabled, users can unregister enrolled U2F device.
   * **Lifetime**:​ Unlimited by default. Set a Time To Live in seconds. TTL is checked at each login process if set. If TTL is expired, relative 2F device is removed.   * **Lifetime**:​ Unlimited by default. Set a Time To Live in seconds. TTL is checked at each login process if set. If TTL is expired, relative 2F device is removed.
 +  * **Logo** (Optional): logo file //(in static/<​skin>​ directory)//​
 +  * **Label** (Optional): label that should be displayed to the user on the choice screen
  
 <note important>​If you want to use a custom rule for "​activation"​ and enable self-registration,​ you have to include this in your rule: ''​$_2fDevices =~ /"​type":​\s*"​U2F"/​s'',​ else U2F will be required even if users are not registered. This is automatically done when "​activation"​ is set to "​on"​.</​note>​ <note important>​If you want to use a custom rule for "​activation"​ and enable self-registration,​ you have to include this in your rule: ''​$_2fDevices =~ /"​type":​\s*"​U2F"/​s'',​ else U2F will be required even if users are not registered. This is automatically done when "​activation"​ is set to "​on"​.</​note>​