Hello community,
here is the log from the commit of package apache2-mod_authn_otp for
openSUSE:Factory checked in at 2017-11-01 11:09:54
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/apache2-mod_authn_otp (Old)
and /work/SRC/openSUSE:Factory/.apache2-mod_authn_otp.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "apache2-mod_authn_otp"
Wed Nov 1 11:09:54 2017 rev:8 rq:537921 version:1.1.8
Changes:
--------
---
/work/SRC/openSUSE:Factory/apache2-mod_authn_otp/apache2-mod_authn_otp.changes
2015-12-21 12:04:36.000000000 +0100
+++
/work/SRC/openSUSE:Factory/.apache2-mod_authn_otp.new/apache2-mod_authn_otp.changes
2017-11-01 11:09:53.521217230 +0100
@@ -1,0 +2,6 @@
+Mon Oct 30 15:46:43 UTC 2017 - [email protected]
+
+- Update to version 1.1.8
+ + Added PINFakeBasicAuth configuration option
+
+-------------------------------------------------------------------
Old:
----
mod_authn_otp-1.1.7.tar.gz
New:
----
mod_authn_otp-1.1.8.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ apache2-mod_authn_otp.spec ++++++
--- /var/tmp/diff_new_pack.RkmgA8/_old 2017-11-01 11:09:54.317188156 +0100
+++ /var/tmp/diff_new_pack.RkmgA8/_new 2017-11-01 11:09:54.321188009 +0100
@@ -1,7 +1,7 @@
#
# spec file for package apache2-mod_authn_otp
#
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
# Copyright (c) 2012 Archie L. Cobbs <[email protected]>
#
# All modifications and additions to the file contributed by third parties
@@ -19,7 +19,7 @@
%define mod_name mod_authn_otp
Name: apache2-%{mod_name}
-Version: 1.1.7
+Version: 1.1.8
Release: 0
Summary: Apache module for one-time password authentication
License: Apache-2.0
++++++ mod_authn_otp-1.1.7.tar.gz -> mod_authn_otp-1.1.8.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/CHANGES
new/mod_authn_otp-1.1.8/CHANGES
--- old/mod_authn_otp-1.1.7/CHANGES 2014-05-17 18:26:14.000000000 +0200
+++ new/mod_authn_otp-1.1.8/CHANGES 2017-10-30 16:40:57.000000000 +0100
@@ -1,3 +1,6 @@
+Version 1.1.8 relesed October 30, 2017
+
+ - Added PINFakeBasicAuth configuration option
Version 1.1.7 (r147) released 17 May 2014
@@ -48,4 +51,3 @@
- Initial release
-$Id: CHANGES 147 2014-05-17 16:26:13Z archie.cobbs $
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/INSTALL
new/mod_authn_otp-1.1.8/INSTALL
--- old/mod_authn_otp-1.1.7/INSTALL 2011-06-10 16:27:51.000000000 +0200
+++ new/mod_authn_otp-1.1.8/INSTALL 2017-10-30 16:36:25.000000000 +0100
@@ -12,4 +12,3 @@
3. Run `make'
4. Run `make install'
-$Id: INSTALL 99 2011-06-10 14:27:51Z archie.cobbs $
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/Makefile.am
new/mod_authn_otp-1.1.8/Makefile.am
--- old/mod_authn_otp-1.1.7/Makefile.am 2012-02-29 23:11:38.000000000 +0100
+++ new/mod_authn_otp-1.1.8/Makefile.am 2017-10-30 16:36:25.000000000 +0100
@@ -16,8 +16,6 @@
# See the License for the specific language governing permissions and
# limitations under the License.
#
-# $Id: Makefile.am 116 2012-02-29 22:11:38Z archie.cobbs $
-#
all-local: module
@@ -26,6 +24,7 @@
$(APXS) -c -D_REENTRANT `echo $(GCC_WARN_FLAGS) | sed 's/ -/
-Wc,-/g'` -l crypto mod_authn_otp.c
install-exec-local: module
+ mkdir -p "$(DESTDIR)`$(APXS) -q LIBEXECDIR`"
$(APXS) -S LIBEXECDIR="$(DESTDIR)`$(APXS) -q LIBEXECDIR`" -i
mod_authn_otp.la
install-exec-hook:
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/Makefile.in
new/mod_authn_otp-1.1.8/Makefile.in
--- old/mod_authn_otp-1.1.7/Makefile.in 2014-05-17 18:29:27.000000000 +0200
+++ new/mod_authn_otp-1.1.8/Makefile.in 2017-10-30 16:43:11.000000000 +0100
@@ -31,8 +31,6 @@
# See the License for the specific language governing permissions and
# limitations under the License.
#
-# $Id: Makefile.am 116 2012-02-29 22:11:38Z archie.cobbs $
-#
VPATH = @srcdir@
@@ -847,6 +845,7 @@
$(APXS) -c -D_REENTRANT `echo $(GCC_WARN_FLAGS) | sed 's/ -/
-Wc,-/g'` -l crypto mod_authn_otp.c
install-exec-local: module
+ mkdir -p "$(DESTDIR)`$(APXS) -q LIBEXECDIR`"
$(APXS) -S LIBEXECDIR="$(DESTDIR)`$(APXS) -q LIBEXECDIR`" -i
mod_authn_otp.la
install-exec-hook:
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/README
new/mod_authn_otp-1.1.8/README
--- old/mod_authn_otp-1.1.7/README 2009-07-08 16:43:28.000000000 +0200
+++ new/mod_authn_otp-1.1.8/README 2017-10-30 16:36:25.000000000 +0100
@@ -27,6 +27,5 @@
For configuration information and other details please see:
- http://mod-authn-otp.googlecode.com/
+ https://github.com/archiecobbs/mod-authn-otp
-$Id: README 50 2009-07-08 14:43:28Z archie.cobbs $
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/aclocal.m4
new/mod_authn_otp-1.1.8/aclocal.m4
--- old/mod_authn_otp-1.1.7/aclocal.m4 2014-05-17 18:29:26.000000000 +0200
+++ new/mod_authn_otp-1.1.8/aclocal.m4 2017-10-30 16:43:09.000000000 +0100
@@ -103,10 +103,9 @@
# configured tree to be moved without reconfiguration.
AC_DEFUN([AM_AUX_DIR_EXPAND],
-[dnl Rely on autoconf to set up CDPATH properly.
-AC_PREREQ([2.50])dnl
-# expand $ac_aux_dir to an absolute path
-am_aux_dir=`cd $ac_aux_dir && pwd`
+[AC_REQUIRE([AC_CONFIG_AUX_DIR_DEFAULT])dnl
+# Expand $ac_aux_dir to an absolute path.
+am_aux_dir=`cd "$ac_aux_dir" && pwd`
])
# AM_CONDITIONAL -*- Autoconf -*-
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/configure
new/mod_authn_otp-1.1.8/configure
--- old/mod_authn_otp-1.1.7/configure 2014-05-17 18:29:28.000000000 +0200
+++ new/mod_authn_otp-1.1.8/configure 2017-10-30 16:43:11.000000000 +0100
@@ -1,9 +1,8 @@
#! /bin/sh
-# From configure.ac Id.
# Guess values for system-dependent variables and create Makefiles.
-# Generated by GNU Autoconf 2.69 for mod_authn_otp Apache2 authentication
module supporting one-time passwords 1.1.7.
+# Generated by GNU Autoconf 2.69 for mod_authn_otp Apache2 authentication
module supporting one-time passwords 1.1.8.
#
-# Report bugs to <http://mod-auth-otp.googlecode.com/>.
+# Report bugs to <https://github.com/archiecobbs/mod-authn-otp>.
#
#
# Copyright (C) 1992-1996, 1998-2012 Free Software Foundation, Inc.
@@ -268,8 +267,8 @@
$as_echo "$0: be upgraded to zsh 4.3.4 or later."
else
$as_echo "$0: Please tell [email protected] and
-$0: http://mod-auth-otp.googlecode.com/ about your system,
-$0: including any error possibly output before this
+$0: https://github.com/archiecobbs/mod-authn-otp about your
+$0: system, including any error possibly output before this
$0: message. Then install a modern shell, or manually run
$0: the script under such a shell if you do have one."
fi
@@ -581,9 +580,9 @@
# Identity of this package.
PACKAGE_NAME='mod_authn_otp Apache2 authentication module supporting one-time
passwords'
PACKAGE_TARNAME='mod_authn_otp'
-PACKAGE_VERSION='1.1.7'
-PACKAGE_STRING='mod_authn_otp Apache2 authentication module supporting
one-time passwords 1.1.7'
-PACKAGE_BUGREPORT='http://mod-auth-otp.googlecode.com/'
+PACKAGE_VERSION='1.1.8'
+PACKAGE_STRING='mod_authn_otp Apache2 authentication module supporting
one-time passwords 1.1.8'
+PACKAGE_BUGREPORT='https://github.com/archiecobbs/mod-authn-otp'
PACKAGE_URL=''
ac_default_prefix=/usr
@@ -1272,7 +1271,7 @@
# Omit some internal or obsolete options to make the list less imposing.
# This message is too long to be a string in the A/UX 3.1 sh.
cat <<_ACEOF
-\`configure' configures mod_authn_otp Apache2 authentication module supporting
one-time passwords 1.1.7 to adapt to many kinds of systems.
+\`configure' configures mod_authn_otp Apache2 authentication module supporting
one-time passwords 1.1.8 to adapt to many kinds of systems.
Usage: $0 [OPTION]... [VAR=VALUE]...
@@ -1338,7 +1337,7 @@
if test -n "$ac_init_help"; then
case $ac_init_help in
- short | recursive ) echo "Configuration of mod_authn_otp Apache2
authentication module supporting one-time passwords 1.1.7:";;
+ short | recursive ) echo "Configuration of mod_authn_otp Apache2
authentication module supporting one-time passwords 1.1.8:";;
esac
cat <<\_ACEOF
@@ -1367,7 +1366,7 @@
Use these variables to override the choices made by `configure' or to help
it to find libraries and programs with nonstandard names/locations.
-Report bugs to <http://mod-auth-otp.googlecode.com/>.
+Report bugs to <https://github.com/archiecobbs/mod-authn-otp>.
_ACEOF
ac_status=$?
fi
@@ -1430,7 +1429,7 @@
test -n "$ac_init_help" && exit $ac_status
if $ac_init_version; then
cat <<\_ACEOF
-mod_authn_otp Apache2 authentication module supporting one-time passwords
configure 1.1.7
+mod_authn_otp Apache2 authentication module supporting one-time passwords
configure 1.1.8
generated by GNU Autoconf 2.69
Copyright (C) 2012 Free Software Foundation, Inc.
@@ -1744,9 +1743,9 @@
$as_echo "$as_me: WARNING: $2: section \"Present But Cannot Be Compiled\""
>&2;}
{ $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: proceeding with the
compiler's result" >&5
$as_echo "$as_me: WARNING: $2: proceeding with the compiler's result" >&2;}
-( $as_echo "## -------------------------------------------------- ##
-## Report this to http://mod-auth-otp.googlecode.com/ ##
-## -------------------------------------------------- ##"
+( $as_echo "## ----------------------------------------------------------- ##
+## Report this to https://github.com/archiecobbs/mod-authn-otp ##
+## ----------------------------------------------------------- ##"
) | sed "s/^/$as_me: WARNING: /" >&2
;;
esac
@@ -1799,7 +1798,7 @@
This file contains any messages produced by compilers while
running configure, to aid debugging if configure makes a mistake.
-It was created by mod_authn_otp Apache2 authentication module supporting
one-time passwords $as_me 1.1.7, which was
+It was created by mod_authn_otp Apache2 authentication module supporting
one-time passwords $as_me 1.1.8, which was
generated by GNU Autoconf 2.69. Invocation command line was
$ $0 $@
@@ -2348,8 +2347,8 @@
ac_script='s/[\\$]/&&/g;s/;s,x,x,$//'
program_transform_name=`$as_echo "$program_transform_name" | sed "$ac_script"`
-# expand $ac_aux_dir to an absolute path
-am_aux_dir=`cd $ac_aux_dir && pwd`
+# Expand $ac_aux_dir to an absolute path.
+am_aux_dir=`cd "$ac_aux_dir" && pwd`
if test x"${MISSING+set}" != xset; then
case $am_aux_dir in
@@ -2662,7 +2661,7 @@
# Define the identity of the package.
PACKAGE='mod_authn_otp'
- VERSION='1.1.7'
+ VERSION='1.1.8'
cat >>confdefs.h <<_ACEOF
@@ -2715,7 +2714,6 @@
-
{ $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ${MAKE-make} sets
\$(MAKE)" >&5
$as_echo_n "checking whether ${MAKE-make} sets \$(MAKE)... " >&6; }
set x ${MAKE-make}
@@ -4940,7 +4938,7 @@
# report actual input values of CONFIG_FILES etc. instead of their
# values after options handling.
ac_log="
-This file was extended by mod_authn_otp Apache2 authentication module
supporting one-time passwords $as_me 1.1.7, which was
+This file was extended by mod_authn_otp Apache2 authentication module
supporting one-time passwords $as_me 1.1.8, which was
generated by GNU Autoconf 2.69. Invocation command line was
CONFIG_FILES = $CONFIG_FILES
@@ -5000,13 +4998,13 @@
Configuration commands:
$config_commands
-Report bugs to <http://mod-auth-otp.googlecode.com/>."
+Report bugs to <https://github.com/archiecobbs/mod-authn-otp>."
_ACEOF
cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1
ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //;
s/[\\""\`\$]/\\\\&/g'`"
ac_cs_version="\\
-mod_authn_otp Apache2 authentication module supporting one-time passwords
config.status 1.1.7
+mod_authn_otp Apache2 authentication module supporting one-time passwords
config.status 1.1.8
configured by $0, generated by GNU Autoconf 2.69,
with options \\"\$ac_cs_config\\"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/configure.ac
new/mod_authn_otp-1.1.8/configure.ac
--- old/mod_authn_otp-1.1.7/configure.ac 2013-11-18 20:36:24.000000000
+0100
+++ new/mod_authn_otp-1.1.8/configure.ac 2017-10-30 16:36:25.000000000
+0100
@@ -16,15 +16,12 @@
# See the License for the specific language governing permissions and
# limitations under the License.
#
-# $Id$
-#
-AC_INIT([mod_authn_otp Apache2 authentication module supporting one-time
passwords], [1.1.7], [http://mod-auth-otp.googlecode.com/], [mod_authn_otp])
+AC_INIT([mod_authn_otp Apache2 authentication module supporting one-time
passwords], [1.1.8], [https://github.com/archiecobbs/mod-authn-otp],
[mod_authn_otp])
AC_CONFIG_AUX_DIR(scripts)
AM_INIT_AUTOMAKE
dnl AM_MAINTAINER_MODE
AC_PREREQ(2.59)
-AC_REVISION($Id$)
AC_PREFIX_DEFAULT(/usr)
AC_PROG_MAKE_SET
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/hotp.c
new/mod_authn_otp-1.1.8/hotp.c
--- old/mod_authn_otp-1.1.7/hotp.c 2009-06-24 00:28:27.000000000 +0200
+++ new/mod_authn_otp-1.1.8/hotp.c 2017-10-30 16:36:25.000000000 +0100
@@ -15,8 +15,6 @@
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
- *
- * $Id: hotp.c 41 2009-06-23 22:28:27Z archie.cobbs $
*/
#include "otptool.h"
@@ -28,7 +26,7 @@
* Generate an OTP using the algorithm specified in RFC 4226,
*/
void
-hotp(const u_char *key, size_t keylen, u_long counter, int ndigits, char
*buf10, char *buf16, size_t buflen)
+hotp(const u_char *key, size_t keylen, uint64_t counter, int ndigits, char
*buf10, char *buf16, size_t buflen)
{
const int max10 = sizeof(powers10) / sizeof(*powers10);
const int max16 = 8;
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/mod_authn_otp.c
new/mod_authn_otp-1.1.8/mod_authn_otp.c
--- old/mod_authn_otp-1.1.7/mod_authn_otp.c 2014-04-28 23:55:54.000000000
+0200
+++ new/mod_authn_otp-1.1.8/mod_authn_otp.c 2017-10-30 16:36:25.000000000
+0100
@@ -15,14 +15,13 @@
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
- *
- * $Id: mod_authn_otp.c 146 2014-04-28 21:55:52Z archie.cobbs $
*/
#include "apr_lib.h"
#include "ap_config.h"
#include "ap_provider.h"
#include "mod_auth.h"
+#include "apr_base64.h"
// Fix libapr pollution
#undef PACKAGE_BUGREPORT
@@ -91,6 +90,7 @@
#define DEFAULT_MAX_LINGER (10 * 60) /* 10 minutes */
#define DEFAULT_LOGOUT_IP_CHANGE 0
#define DEFAULT_ALLOW_FALLTHROUGH 0
+#define DEFAULT_PIN_FAKE_BASIC_AUTH 0
/* PIN configuration */
#define PIN_CONFIG_LITERAL 0
@@ -120,6 +120,7 @@
int logout_ip_change; /* Auto-logout user if IP
address changes */
int allow_fallthrough; /* Allow fall-through if OTP
auth fails */
authn_provider_list *provlist; /* Authorization providers for
checking PINs */
+ int pin_fake_basic_auth; /* Emulate basic
authentication with username and PIN */
};
/* User info structure */
@@ -141,11 +142,12 @@
/* Internal functions */
static authn_status find_update_user(request_rec *r, const char *usersfile,
struct otp_user *const user, int update);
-static void hotp(const u_char *key, size_t keylen, u_long counter, int
ndigits, char *buf10, char *buf16, size_t buflen);
+static void hotp(const u_char *key, size_t keylen, uint64_t counter,
int ndigits, char *buf10, char *buf16, size_t buflen);
static void motp(const u_char *key, size_t keylen, const char *pin,
u_long counter, int ndigits, char *buf, size_t buflen);
static int parse_token_type(const char *type, struct otp_user
*tokinfo);
static apr_status_t print_user(apr_file_t *file, const struct otp_user *user);
static void printhex(char *buf, size_t buflen, const u_char *data,
size_t dlen, int max_digits);
+static void pin_fake_basic_auth(request_rec *r, const char *user,
const char *pin);
static authn_status authn_otp_check_pin(request_rec *r, struct otp_config
*const conf, struct otp_user *const user, const char *pin);
static authn_status authn_otp_check_pin_external(request_rec *r, struct
otp_config *const conf, const char *user, const char *pin);
static authn_status authn_otp_check_password(request_rec *r, const char
*username, const char *password);
@@ -596,7 +598,7 @@
* Generate an OTP using the algorithm specified in RFC 4226,
*/
static void
-hotp(const u_char *key, size_t keylen, u_long counter, int ndigits, char
*buf10, char *buf16, size_t buflen)
+hotp(const u_char *key, size_t keylen, uint64_t counter, int ndigits, char
*buf10, char *buf16, size_t buflen)
{
const int max10 = sizeof(powers10) / sizeof(*powers10);
const int max16 = 8;
@@ -677,6 +679,20 @@
}
/*
+ * Insert fake Basic Authentication Header for PIN
+ */
+static void
+pin_fake_basic_auth(request_rec *r, const char *user, const char *pin){
+ char *basic = apr_pstrcat(r->pool, user, ":", pin, NULL);
+ apr_size_t size = (apr_size_t) strlen(basic);
+ char *base64 = apr_palloc(r->pool,
+ apr_base64_encode_len(size + 1) * sizeof(char));
+ apr_base64_encode(base64, basic, size);
+ apr_table_setn(r->headers_in, "Authorization",
+ apr_pstrcat(r->pool, "Basic ", base64, NULL));
+}
+
+/*
* Verify PIN using an external authn provider configured via
"OTPAuthPINAuthProvider".
*/
static authn_status
@@ -830,6 +846,10 @@
status = AUTH_USER_NOT_FOUND;
return status;
}
+
+ /* Insert Basic Authentication header if PINFakeBasicAuth is set */
+ if (conf->pin_fake_basic_auth)
+ pin_fake_basic_auth(r, user->username, pinbuf);
}
/* Check OTP length */
@@ -1066,6 +1086,7 @@
conf->logout_ip_change = dir_conf->logout_ip_change;
conf->allow_fallthrough = dir_conf->allow_fallthrough;
copy_provider_list(r->pool, &conf->provlist, dir_conf->provlist);
+ conf->pin_fake_basic_auth = dir_conf->pin_fake_basic_auth;
/* Apply defaults for any unset values */
if (conf->max_offset == -1)
@@ -1076,6 +1097,8 @@
conf->logout_ip_change = DEFAULT_LOGOUT_IP_CHANGE;
if (conf->allow_fallthrough == -1)
conf->allow_fallthrough = DEFAULT_ALLOW_FALLTHROUGH;
+ if (conf->pin_fake_basic_auth == -1)
+ conf->pin_fake_basic_auth = DEFAULT_PIN_FAKE_BASIC_AUTH;
/* Done */
return conf;
@@ -1096,6 +1119,7 @@
conf->logout_ip_change = -1;
conf->allow_fallthrough = -1;
conf->provlist = NULL;
+ conf->pin_fake_basic_auth = -1;
return conf;
}
@@ -1116,6 +1140,7 @@
conf->logout_ip_change = conf2->logout_ip_change != -1 ?
conf2->logout_ip_change : conf1->logout_ip_change;
conf->allow_fallthrough = conf2->allow_fallthrough != -1 ?
conf2->allow_fallthrough : conf1->allow_fallthrough;
copy_provider_list(p, &conf->provlist, conf2->provlist != NULL ?
conf2->provlist : conf1->provlist);
+ conf->pin_fake_basic_auth = conf2->pin_fake_basic_auth != -1 ?
conf2->pin_fake_basic_auth : conf1->pin_fake_basic_auth;
return conf;
}
@@ -1232,6 +1257,11 @@
(void *)APR_OFFSETOF(struct otp_config, allow_fallthrough),
OR_AUTHCFG,
"allow failed auth attempts to fall through to the next auth provider
(if any)"),
+ AP_INIT_FLAG("PINFakeBasicAuth",
+ ap_set_flag_slot,
+ (void *)APR_OFFSETOF(struct otp_config, pin_fake_basic_auth),
+ OR_AUTHCFG,
+ "pass through authentication to the rest of the server as a basic
authentication header"),
{ NULL }
};
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/motp.c
new/mod_authn_otp-1.1.8/motp.c
--- old/mod_authn_otp-1.1.7/motp.c 2009-06-24 00:28:27.000000000 +0200
+++ new/mod_authn_otp-1.1.8/motp.c 2017-10-30 16:36:25.000000000 +0100
@@ -15,8 +15,6 @@
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
- *
- * $Id: motp.c 41 2009-06-23 22:28:27Z archie.cobbs $
*/
#include "otptool.h"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/otptool.1
new/mod_authn_otp-1.1.8/otptool.1
--- old/mod_authn_otp-1.1.7/otptool.1 2009-10-29 03:17:13.000000000 +0100
+++ new/mod_authn_otp-1.1.8/otptool.1 2017-10-30 16:36:25.000000000 +0100
@@ -15,8 +15,6 @@
.\" WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
.\" See the License for the specific language governing permissions and
.\" limitations under the License.
-.\"
-.\" $Id: otptool.1 56 2009-10-29 02:17:13Z archie.cobbs $
.\"/
.Dd June 21, 2008
.Dt OTPTOOL 1
@@ -167,7 +165,7 @@
.Re
.Rs
.%T "mod_authn_otp: Apache module for one-time password authentication"
-.%O "http://mod-authn-otp.googlecode.com/";
+.%O "https://github.com/archiecobbs/mod-authn-otp";
.Re
.Rs
.%T "Mobile-OTP: Mobile One Time Passwords"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/otptool.c
new/mod_authn_otp-1.1.8/otptool.c
--- old/mod_authn_otp-1.1.7/otptool.c 2011-11-07 23:29:28.000000000 +0100
+++ new/mod_authn_otp-1.1.8/otptool.c 2017-10-30 16:36:25.000000000 +0100
@@ -15,8 +15,6 @@
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
- *
- * $Id: otptool.c 115 2011-11-07 22:29:28Z archie.cobbs $
*/
#include "otptool.h"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/otptool.h
new/mod_authn_otp-1.1.8/otptool.h
--- old/mod_authn_otp-1.1.7/otptool.h 2011-01-27 22:19:53.000000000 +0100
+++ new/mod_authn_otp-1.1.8/otptool.h 2017-10-30 16:36:25.000000000 +0100
@@ -15,8 +15,6 @@
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
- *
- * $Id: otptool.h 69 2011-01-27 21:19:53Z archie.cobbs $
*/
#include <sys/types.h>
@@ -24,6 +22,7 @@
#include <ctype.h>
#include <errno.h>
#include <stdio.h>
+#include <stdint.h>
#include <string.h>
#include <time.h>
#include <unistd.h>
@@ -75,7 +74,7 @@
#define DEFAULT_WINDOW 0
/* hotp.c */
-extern void hotp(const u_char *key, size_t keylen, u_long counter, int
ndigits, char *buf10, char *buf16, size_t buflen);
+extern void hotp(const u_char *key, size_t keylen, uint64_t counter,
int ndigits, char *buf10, char *buf16, size_t buflen);
/* motp.c */
extern void motp(const u_char *key, size_t keylen, const char *pin,
u_long counter, int ndigits, char *buf, size_t buflen);
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/phex.c
new/mod_authn_otp-1.1.8/phex.c
--- old/mod_authn_otp-1.1.7/phex.c 2009-06-24 00:28:27.000000000 +0200
+++ new/mod_authn_otp-1.1.8/phex.c 2017-10-30 16:36:25.000000000 +0100
@@ -15,8 +15,6 @@
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
- *
- * $Id: phex.c 41 2009-06-23 22:28:27Z archie.cobbs $
*/
#include "otptool.h"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/mod_authn_otp-1.1.7/users.sample
new/mod_authn_otp-1.1.8/users.sample
--- old/mod_authn_otp-1.1.7/users.sample 2011-06-25 21:28:07.000000000
+0200
+++ new/mod_authn_otp-1.1.8/users.sample 2017-10-30 16:36:25.000000000
+0100
@@ -1,5 +1,3 @@
-# $Id: users.sample 102 2011-06-25 19:28:07Z archie.cobbs $
-
#
# Example users file for mod_authn_otp
#
@@ -42,7 +40,7 @@
# MOTP - Mobile-OTP time-based token 10 second interval and
six digit OTP
# MOTP/E - Mobile-OTP event-based token with six digit OTP
#
-# For more info see: http://code.google.com/p/mod-authn-otp/wiki/UsersFile
+# For more info see:
https://github.com/archiecobbs/mod-authn-otp/wiki/UsersFile
#
# Some users who have logged in at least once.
