Roadmap

OTPme 0.1

100%

10 issues   (10 closed — 0 open)

Related issues
Feature #5: child sessions should not inherit timeout values
Feature #20: add --version

OTPme 0.2

79%

24 issues   (19 closed5 open)

Related issues
Feature #3: add optional powered-by logo to roundcube plugin
Feature #4: add motp offset
Feature #6: add max_sessions feature to access groups
Feature #10: implement otpme-token show
Feature #11: add min_len, max_len and default_len for static password tokens
Feature #12: add sort feature to show_sessions()
Feature #13: sessions should be grouped by parent/child relation in show_sessions()
Feature #17: add token type that will call an external script for user authentication
Feature #18: add user authorization script
Feature #19: following logout requests should not be counted as failed login
Feature #22: add option to force CTP usage
Feature #23: modify log_passwords feature for logging of all auth infos (e.g. challenge/response)
Feature #24: add bash completion for OTPme commands
Feature #26: add sample config for openvpn authentication
Feature #27: add sample config for mysql using pam_radius
Feature #28: add phpmyadmin sample config
Feature #30: add option to configure hash type for CTP and SLP generation
Feature #31: child sessions should be identifiable via "otpme-session show"
Feature #32: add sample config for openldap
Feature #33: implement module to be used with freeradius rlm_python
Feature #37: implement support for different hash types for CTP generation in roundcube plugin
Feature #38: add support for push-token (e.g. sms)

OTPme 0.3

63%

43 issues   (4 closed39 open)

Related issues
Feature #2: add auto-disable option for users
Feature #7: add ability to move a token from one user to another
Feature #9: add -f option to disable any user question for cli tools
Feature #25: add "force token type" to groups
Feature #29: add support for mod_auth_pubtkt
Feature #39: add cluster support to OTPme
Feature #41: Add daemon mode to OTPme
Feature #42: add OATH support
Feature #43: QR-Code based token rollout
Feature #44: add optional PIN to OATH OTPs
Feature #45: add backend encryption for all sensitive data
Feature #46: add ssh-token support for authentication with OTPme daemons
Feature #47: add support for a second factor token (e.g. HOTP) to add some additional security to otpme ssh-agent autentication
Feature #48: add ldap server support
Feature #49: add PAM module
Feature #50: add support for offline tokens
Feature #52: add support for yubikey in HMAC-SHA1 mode
Feature #53: implement hardware token/smartcard deployment
Feature #54: add ACL support for OTPme objects (e.g. users, tokens, groups etc.)
Feature #55: Add support to replace a token
Feature #56: Implement OTPme scripts
Feature #57: Implement signing of OTPme scripts
Feature #58: Implement preloading of objects
Feature #59: Add header to encrypted attributes
Feature #60: Implement SSH agent script
Feature #61: Implement login script
Feature #62: Implement user authorization script
Feature #63: Implement token authorization script
Feature #64: Implement U2F token
Feature #65: implement revoking of script signatures
Feature #66: Allow usage of U2F token as second factor token with "password" tokens
Feature #67: Implement deployment of SSH public keys
Feature #68: Add optional support for signing authentication replies
Feature #69: Add support for user/group resolving via libnss
Feature #70: Implement argon2 support for AES key derivation
Feature #71: Add policy to restrict login times
Feature #72: Allow LDAP authentication to different accessgroups
Feature #73: Extend the current integrated CA to a full blown CA
Feature #74: Implement signature tags
Feature #75: Add search index
Feature #78: Implement master node failover
Feature #79: Implement load balancing