We have just developed a new Yubikey Authentication Realm for Glassfish.
It's based on the built-in JdbcRealm, and wraps most of that functionality so that you can still authenticate users against the database if they don't have a Yubikey enrolled against their account.
It takes all the standard configuration parameters of JdbcRealm and adds the following additional params:
Code:
yubikey-column : Column containing Yubikey ids in user-table
yubikey-auth-url : The https:// address of the validation server
yubikey-force : Only permit OTP logins (otherwise will fallback to legacy)
yubikey-client-id : Client ID used in validation requests
Happy to publish full details of this if it's of use to anyone else.
Regards,
Timothy Creswick
Thoughtspace Ltd
Login
FAQ
Search
