Actions
Feature #68
openAdd optional support for signing authentication replies
Description
- The client should send a challenge to the OTPme server that will be signed with its public key
- This reduces the code where authentication related bugs may lead to false positives
- Using JWT for this feature will allow us to re-use it for web authentication in later versions (https://en.wikipedia.org/wiki/JSON_Web_Token)
Actions