From klara.mall at kit.edu Wed Jan 8 10:50:08 2025 From: klara.mall at kit.edu (Klara Mall) Date: Wed, 8 Jan 2025 11:50:08 +0100 Subject: [RADIATOR] "AuthBy URL" with linotp check In-Reply-To: <2db86217-a903-4393-84e4-8c5769704782@uni-ulm.de> References: <11b436b5-ff10-4e77-a573-1dd094440c6d@kit.edu> <1c37ca45-40ed-4087-9572-e36d35571741@uni-ulm.de> <2db86217-a903-4393-84e4-8c5769704782@uni-ulm.de> Message-ID: Hi Charly, On 11/18/24 14:02, Karl Gaissmaier via radiator wrote: > Am 18.11.24 um 13:44 schrieb Klara Mall via radiator: > ... >> I found "Authby External" where I can use a command to do the https >> query and return the suitable exit code. This now seems to work very >> good with a python script which gets username and password from stdin, >> querys the linotp url and returns the appropriate exit code. > > be aware of: > > " will wait for the external process to complete before > handling more requests, so you should use this carefully, and avoid > using long-running commands. If you cannot avoid long-running EXTERNAL > commands, you can use the Fork parameter to force to > fork before calling the external command. This may improve performance." Thanks for your hints, good to know. For us this is not a big problem because the request should be fast and this radiator instance is only for doing the otp auth. If the otp auth request hangs, everything will be broken anyway. Best regards Klara -- Karlsruher Institut f?r Technologie (KIT) Scientific Computing Center (SCC) Klara Mall Abteilungsleiter Netze und Telekommunikation (NET) Zirkel 2, Geb. 20.20, R. 155 76131 Karlsruhe Telefon: +49 721 608-48946 E-Mail: klara.mall at kit.edu Web: http://www.scc.kit.edu Sitz der K?rperschaft: Kaiserstra?e 12, 76131 Karlsruhe KIT ? Die Forschungsuniversit?t in der Helmholtz-Gemeinschaft -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5081 bytes Desc: S/MIME Cryptographic Signature URL: