Re: New Glassfish Yubikey Authentication Realm

2009-09-30T21:19:49+01:00

I have now posted a more detailed note about this on my blog, which is available at http://www.curiousmentality.co.uk/2009/ ... ion-realm/

Statistics: Posted by tcreswick — Wed Sep 30, 2009 9:19 pm

New Glassfish Yubikey Authentication Realm

2009-09-10T20:33:34+01:00

We have just developed a new Yubikey Authentication Realm for Glassfish.

It's based on the built-in JdbcRealm, and wraps most of that functionality so that you can still authenticate users against the database if they don't have a Yubikey enrolled against their account.

It takes all the standard configuration parameters of JdbcRealm and adds the following additional params:

Code:

yubikey-column      : Column containing Yubikey ids in user-table
yubikey-auth-url    : The https:// address of the validation server
yubikey-force       : Only permit OTP logins (otherwise will fallback to legacy)
yubikey-client-id   : Client ID used in validation requests

Happy to publish full details of this if it's of use to anyone else.

Regards,

Timothy Creswick
Thoughtspace Ltd

Statistics: Posted by tcreswick — Thu Sep 10, 2009 8:33 pm

Yubico Forum

Re: New Glassfish Yubikey Authentication Realm

New Glassfish Yubikey Authentication Realm