From: Wolfgang Bumiller <w.bumiller@proxmox.com>
Date: Tue, 2 Apr 2019 10:22:04 +0000 (+0200)
Subject: store u2f challenges in the rpc environment
X-Git-Url: https://git.proxmox.com/?a=commitdiff_plain;h=7541d6a78885297c4b913efba084096e31fe6370;p=pve-manager.git

store u2f challenges in the rpc environment

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>
---

diff --git a/PVE/HTTPServer.pm b/PVE/HTTPServer.pm
index 9a02e799..ec970010 100755
--- a/PVE/HTTPServer.pm
+++ b/PVE/HTTPServer.pm
@@ -80,7 +80,13 @@ sub auth_handler {
 
 	die "No ticket\n" if !$ticket;
 
-	($username, $age) = PVE::AccessControl::verify_ticket($ticket);
+	($username, $age, my $challenge) = PVE::AccessControl::verify_ticket($ticket);
+
+	if (defined($challenge)) {
+	    $rpcenv->set_u2f_challenge($challenge);
+	    die "No ticket\n"
+		if ($rel_uri ne '/access/u2f' || $method ne 'POST');
+	}
 
 	$rpcenv->set_user($username);