Settings¶
The following settings are available:
YUBICO_USE_PASSWORD¶
Defaults to true True
and means that user will also need to enter his account password after entering the OTP.
If you want to allow user to only use his YubiKey to login, set this to False
.
YUBIKEY_PASSWORD_ATTEMPTS¶
Defaults to true 3
and means how many times user can enter a wrong password before he needs to provide a new OTP.
This helps to prevent brute forces attacks when someone gets a valid token or steals user’s session cookie.
Note that this setting only has an effect if YUBICO_USE_PASSWORD
is set to True
.
YUBIKEY_SESSION_USER¶
The name of the session key where the user object is saved. Defaults to yubicodjango_user
.
YUBIKEY_ATTEMPT_COUNTER¶
The name of the session key which holds the value of how many times user has entered the wrong password.
Defaults to yubicodjango_counter
.
YUBICO_MULTI_MODE¶
Defaults to False
.
If set to True
user will need to enter YUBICO_MULTI_NUMBER
number of OTPs which were generated in the YUBICO_MULTI_TIMEOUT
seconds long time window for a successful validation.
YUBICO_MULTI_NUMBER¶
Defaults to 3
.
The number of OTPs user will need to enter when multi mode is enabled.
Note: This setting is only applicable is YUBICO_MULTI_MODE is set to True.
YUBICO_MULTI_TIMEOUT¶
Defaults to 10
.
How many seconds can pass between the time when the first and the last OTP is generated.
Note: This setting is only applicable is YUBICO_MULTI_MODE is set to True.