necouchman commented on PR #974: URL: https://github.com/apache/guacamole-client/pull/974#issuecomment-2052640213
> Hm ... I'd think this would result in the TOTP key getting regenerated when the user attempts to enroll: > > 1. User attempts to log in. > 2. Key is generated and presented to user for enrollment. > 3. To confirm enrollment, the user resubmits credentials plus the TOTP code for _that_ key. > 4. That's a login attempt and the user isn't confirmed yet, so the key is regenerated. > 5. The TOTP code doesn't match the newly-generated key and the user is blocked from enrolling. Ah, okay - I thought it was probably too simple...and haven't thoroughly tested it, yet. Will convert to draft and take another look. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
