Closed dmulder closed 2 months ago
This is a temporary fix for https://github.com/himmelblau-idm/himmelblau/issues/103. A more permanent fix will require a redesign of the DAG in Kanidm.
Perhaps this fix should remain anyway, and we could have a fallback from the SFA fail to DAG (when that's fixed). That way we have a shortcut to enrollment if the user doesn't require MFA anyway (otherwise they'll be forced to SFA authenticate again using the DAG).
Updated to include the DAG fallback after SFA attempt.
The DAG request isn't polling properly, and needs patches to Kanidm. Disable DAG for now until this is fixed.
Fixes #
Checklist