Two factor auth - Githubissues

PecanProject / pecan

The Predictive Ecosystem Analyzer (PEcAn) is an integrated ecological bioinformatics toolbox.

www.pecanproject.org

Other

202 stars 234 forks source link

Two factor auth #1001

Open robkooper opened 8 years ago

robkooper commented 8 years ago

Some sites (HPC and others) are starting to require more and more two auth. When using PEcAn from the command line the user can create a SSH tunnel, keep it open and pass in the pecan.xml file the connection to the tunnel. From the web this is not possible. We need to add code that will ask for the two factor code and try to setup the connection on behalf of hte user.

If the connection fails, we need to fail the workflow as well (right now it will continue).

robkooper commented 8 years ago

Initial option is for the user to open a SSH tunnel and use this tunnel in the pecan.xml file.

Create the tunnel:

ssh -nN -o ControlMaster=yes -o ControlPath="/tmp/geo.kooper.tunnel" -l kooper geo.bu.edu

Test the tunnel:

ssh -o ControlPath=/tmp/geo.kooper.tunnel geo.bu.edu pwd

Add following to pecan.xml:

  <host>
    <name>geo.bu.edu</name>
    <user>kooper</user>
    <tunnel>/tmp/geo.kooper.tunnel</tunnel>
  </host>

now as long as the tunnel is active, pecan will use the tunnel to connect.

github-actions[bot] commented 4 years ago

This issue is stale because it has been open 365 days with no activity.