Add support for ignoring YubiKey login depending on client
|Reported by:||Nicklas Nordborg||Owned by:||Nicklas Nordborg|
The use case is that when connecting with FTP to the BASE server it is difficult to use YubiKey. It is working if a YubiKey OTP is generated and used as the username, but FTP clients tend to disconnect if a user has been idle for some time and then automatically re-connect again if needed. Since the YubiKey OTP can only be used once, the re-connection fails and the user is forced to generate a new YubiKey OTP.
The suggested fix is to specify a list of client application ids in the yubikey.properties file. Eg:
no-yubikey = net.sf.basedb.clients.ftp