GitHub - charliewolf/python-gpgauth: :lock: a python library for GPG-based challenge/response 2-factor authentication in web applications

charliewolf / python-gpgauth Public

Notifications You must be signed in to change notification settings
Fork 0
Star 2

🔒 a python library for GPG-based challenge/response 2-factor authentication in web applications

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 8 Commits
gpgauth		gpgauth
packaging		packaging
sample_app		sample_app
tests		tests
.gitignore		.gitignore
.gitmodules		.gitmodules
.travis.yml		.travis.yml
LICENSE.txt		LICENSE.txt
README.txt		README.txt
requirements.txt		requirements.txt
setup.cfg		setup.cfg
setup.py		setup.py

Repository files navigation

gpgauth: a python library for GPG-based challenge/response 2-factor authentication

---
Overview:

    In addition to username and password, users will be asked to sign an arbitrary challenge, i.e.:
        echo -n correct horse battery staple | gpg --detach-sign --armor

    The resulting signature is verified against their account. If it was signed by a key associated with that user, they are allowed to log in.

    For organizations already implementing GPG and/or GPG smart cards, it is a natural way to piggyback 2fa off that.


Usage: The only functions a typical app will need are gpgauth.verify_signature and gpgauth.generate_challenge. See the sample_app directory for a full example.