ldap: add mfa to LDAP login

This commit is contained in:
Bradley Girardeau 2015-07-27 11:24:12 -07:00
parent 5cf78d8ba2
commit 8fa5a349a5

View file

@ -4,6 +4,7 @@ import (
"fmt"
"github.com/go-ldap/ldap"
"github.com/hashicorp/vault/helper/mfa"
"github.com/hashicorp/vault/logical"
"github.com/hashicorp/vault/logical/framework"
)
@ -18,11 +19,13 @@ func Backend() *framework.Backend {
Help: backendHelp,
PathsSpecial: &logical.Paths{
Root: []string{
Root: append([]string{
"config",
"groups/*",
"users/*",
},
mfa.MFAPathsSpecial()...,
),
Unauthenticated: []string{
"login/*",
@ -30,11 +33,12 @@ func Backend() *framework.Backend {
},
Paths: append([]*framework.Path{
pathLogin(&b),
pathConfig(&b),
pathGroups(&b),
pathUsers(&b),
}),
},
mfa.MFAPaths(b.Backend, pathLogin(&b))...,
),
AuthRenew: b.pathLoginRenew,
}