To create new wiki account, please join us on #znc at Libera.Chat and ask admins to create a wiki account for you. You can say thanks to spambots for this inconvenience.
Certauth: Difference between revisions
>TingPing m →Example |
>Mkaysi Try to be a little more clear and mention @id |
||
Line 2: | Line 2: | ||
{{Core Module | version = 0.094}} | {{Core Module | version = 0.094}} | ||
This module let's users to log in | This module let's users to log in to ZNC using SSL client keys ([http://www.oftc.net/oftc/NickServ/CertFP CertFP]). | ||
== Usage == | == Usage == | ||
Line 9: | Line 9: | ||
| type = global}} | | type = global}} | ||
After loading this module, you have to reconnect to znc. You can now save your key fingerprint with <code>/msg *certauth add</code>. From now on you can log in to znc with any password but it cannot be blank. E.g. you can just send an "user/network:" as the server password. | After loading this module, you have to reconnect to znc. You can now save your key fingerprint with <code>/msg *certauth add</code>. From now on you can log in to znc with any password but it cannot be blank. E.g. you can just send an "user@identifier/network:" as the server password. | ||
== Example == | == Example == | ||
After loading certauth and following the steps from [[Cert#Generating_a_certificate|ZNC's Cert page]], I connect with my SSL client certificate to ZNC: | After loading certauth and following the steps from [[Cert#Generating_a_certificate|ZNC's Cert page]] to generate SSL certificate, I connect with my SSL client certificate to ZNC: | ||
<pre> | <pre> |
Revision as of 13:36, 28 May 2015
This module is a part of ZNC. This module is shipped with ZNC by default. If you have the right "LoadMod" you can activate it with /znc LoadMod certauth The code for this module can be found here. This module is part of ZNC since Version 0.094 |
This module let's users to log in to ZNC using SSL client keys (CertFP).
Usage
Arguments
This global module takes no arguments.
Read loading modules to learn more about loading modules.
After loading this module, you have to reconnect to znc. You can now save your key fingerprint with /msg *certauth add
. From now on you can log in to znc with any password but it cannot be blank. E.g. you can just send an "user@identifier/network:" as the server password.
Example
After loading certauth and following the steps from ZNC's Cert page to generate SSL certificate, I connect with my SSL client certificate to ZNC:
/msg *certauth help <*certauth> Commands: show, list, add, del [no] /msg *certauth show <*certauth> Your current public key is: 4da806d1fc3e8e24015e3764e8e4264e188d62aa /msg *certauth list <*certauth> No keys set for your user /msg *certauth add <*certauth> Added your current public key to the list /msg *certauth list <*certauth> +----+------------------------------------------+ <*certauth> | Id | Key | <*certauth> +----+------------------------------------------+ <*certauth> | 1 | 4da806d1fc3e8e24015e3764e8e4264e188d62aa | <*certauth> +----+------------------------------------------+
Now I reconnect to ZNC again. This time, instead of sending "user/network:password" as the server password, I use "user/network:". Thanks to the SSL client certificate, I can now successfully login without my password!