To create new wiki account, please join us on #znc at Libera.Chat and ask admins to create a wiki account for you. You can say thanks to spambots for this inconvenience.

Certauth: Difference between revisions

From ZNC
Jump to navigation Jump to search
>Mkaysi
m Remove accidental dot.
>Mkaysi
Undo revision 1343 by Mkaysi (talk)
Line 12: Line 12:


== Example ==
== Example ==
After loading certauth and following the steps from [http://www.oftc.net/oftc/NickServ/CertFP OFTC's CertFP page], I connect with my SSL client certificate to ZNC:
After loading certauth and following the steps from [[Cert#Generating_a_certificate|ZNC's Cert page]], I connect with my SSL client certificate to ZNC:


<pre>
<pre>
Line 31: Line 31:
</pre>
</pre>


Now I reconnect to ZNC again. This time, instead of sending "user:pass" as the server password, I use "user:". Thanks to the SSL client certificate, I can now successfully login with an empty password!
Now I reconnect to ZNC again. This time, instead of sending "user/network:password" as the server password, I use "user/network:". Thanks to the SSL client certificate, I can now successfully login with an empty password!

Revision as of 06:15, 6 June 2014


This module let's users to log in via SSL client keys, similar to CertFP.

Usage

Arguments

This global module takes no arguments.

Read loading modules to learn more about loading modules.

After loading this module, you have to reconnect to znc. You can now save your key fingerprint with /msg *certauth add. From now on you can log in to znc with any password. E.g. you can just send an "user/network:" as the server password (an empty password).

Example

After loading certauth and following the steps from ZNC's Cert page, I connect with my SSL client certificate to ZNC:

/msg *certauth help
<*certauth> Commands: show, list, add, del [no]
/msg *certauth show
<*certauth> Your current public key is: 4da806d1fc3e8e24015e3764e8e4264e188d62aa
/msg *certauth list
<*certauth> No keys set for your user
/msg *certauth add
<*certauth> Added your current public key to the list
/msg *certauth list
<*certauth> +----+------------------------------------------+
<*certauth> | Id | Key                                      |
<*certauth> +----+------------------------------------------+
<*certauth> | 1  | 4da806d1fc3e8e24015e3764e8e4264e188d62aa |
<*certauth> +----+------------------------------------------+

Now I reconnect to ZNC again. This time, instead of sending "user/network:password" as the server password, I use "user/network:". Thanks to the SSL client certificate, I can now successfully login with an empty password!