[GH-ISSUE #47] Implement PIV support #15

New issue

Closed

opened 2026-05-07 00:17:25 +02:00 by BreizhHardware · 2 comments

BreizhHardware commented 2026-05-07 00:17:25 +02:00

Owner

Copy link

Originally created by @speed47 on GitHub (Nov 16, 2020).
Original GitHub issue: https://github.com/ovh/the-bastion/issues/47

By using ovh-yubico-piv-checker.
Parts of the support have already been open-sourced, namely:

• The accountPIV plugin, to set the per-account policy
• The cron/osh-piv-grace-reaper.pl script, to expire PIV grace periods
• The accountInfo plugin, to report the status of the account PIV policy
• a few internal helper functions

To get complete support we need to:

• add PIV support to selfAddIngressKey/selfDelIngressKey
• A global bastion-wide policy flag, if enforcing PIV for all accounts is desired

Originally created by @speed47 on GitHub (Nov 16, 2020). Original GitHub issue: https://github.com/ovh/the-bastion/issues/47 By using [ovh-yubico-piv-checker](https://github.com/ovh/yubico-piv-checker). Parts of the support have already been open-sourced, namely: - The `accountPIV` plugin, to set the per-account policy - The `cron/osh-piv-grace-reaper.pl` script, to expire PIV grace periods - The `accountInfo` plugin, to report the status of the account PIV policy - a few internal helper functions To get complete support we need to: - add PIV support to `selfAddIngressKey`/`selfDelIngressKey` - A global bastion-wide policy flag, if enforcing PIV for all accounts is desired

BreizhHardware 2026-05-07 00:17:25 +02:00

• closed this issue
• added the
  feature
  label

BreizhHardware commented 2026-05-07 00:17:26 +02:00

Author

Owner

Copy link

@speed47 commented on GitHub (Nov 16, 2020):

This issue is a prerequisite to #33

<!-- gh-comment-id:728009449 --> @speed47 commented on GitHub (Nov 16, 2020): This issue is a prerequisite to #33

BreizhHardware commented 2026-05-07 00:17:26 +02:00

Author

Owner

Copy link

@speed47 commented on GitHub (Jan 12, 2021):

Released in v2.01.99-rc1, closing.

<!-- gh-comment-id:758806127 --> @speed47 commented on GitHub (Jan 12, 2021): Released in v2.01.99-rc1, closing.

BreizhHardware referenced this issue 2026-05-07 00:19:39 +02:00

[PR #15] [MERGED] doc: fix markdown links in design documentation #172

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

expifix

groupcreate_fix_uid

fix_group_gid_fast

gh-pages

clush

expiration

jsonvalidator

v3.23.01

v3.23.00

v3.22.00

v3.21.00

v3.20.00

v3.19.01

v3.19.00

v3.18.99-rc1

v3.18.00

v3.17.01

v3.17.00

v3.16.99-rc3

v3.16.99-rc2

v3.16.99-rc1

v3.16.01

v3.16.00

v3.15.00

v3.14.16

v3.14.15

v3.14.00

v3.13.01

v3.13.00

v3.12.00

v3.11.02

v3.11.01

v3.11.00

v3.10.00

v3.09.02

v3.09.00-really

v3.09.00

v3.09.00-rc3

v3.09.00-rc2

v3.09.00-rc1

v3.08.01

v3.08.00

v3.07.00

v3.06.00

v3.05.01

v3.05.00

v3.04.00

v3.03.99-rc2

v3.03.99-rc1

v3.03.01

v3.03.00

v3.02.00

v3.01.99-rc4

v3.01.99-rc3

v3.01.99-rc2

v3.01.99-rc1

v3.01.03

v3.01.02

v3.01.01

v3.01.00

v3.00.02

v3.00.01

v3.00.00

Labels

Clear labels   

answered

  

bug

  

documentation

  

enhancement

  

enhancement

  

feature

  

feature

  

kept-open-for-info

  

pull-request

Mirrored from GitHub Pull Request

  

question

No labels

answered

bug

documentation

enhancement

enhancement

feature

feature

kept-open-for-info

pull-request

question

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/the-bastion#15

No description provided.