feat(setup): merge fido2 changes

Signed-off-by: Yuriy Movchan <Yuriy.Movchan@gmail.com>
GluuFederation · Jul 1, 2024 · 1f90112 · 1f90112
1 parent 8f9eb14
commit 1f90112
Show file tree

Hide file tree

Showing 3 changed files with 40 additions and 3 deletions.
diff --git a/schema/gluu_schema.json b/schema/gluu_schema.json
@@ -4249,6 +4249,17 @@
             "syntax": "1.3.6.1.4.1.1466.115.121.1.15",
             "x_origin": "Gluu created attribute"
         },
+        {
+            "desc": "oxPublicKeyIdHash",
+            "equality": "integerMatch",
+            "names": [
+                "oxPublicKeyIdHash"
+            ],
+            "oid": "oxAttribute",
+            "substr": "caseIgnoreSubstringsMatch",
+            "syntax": "1.3.6.1.4.1.1466.115.121.1.27",
+            "x_origin": "Gluu created attribute"
+        },
         {
             "desc": "Lifetime of access token",
             "equality": "integerMatch",
@@ -5920,9 +5931,13 @@
                 "creationDate",
                 "oxSessionStateId",
                 "oxCodeChallenge",
+                "oxCodeChallengeHash",
                 "personInum",
                 "oxAuthenticationData",
-                "oxStatus"
+                "oxApplication",
+                "oxStatus",
+                "exp",
+                "del"
             ],
             "must": [
                 "objectclass"
@@ -5942,15 +5957,20 @@
                 "oxId",
                 "creationDate",
                 "displayName",
+                "oxApplication",
                 "oxSessionStateId",
                 "oxCodeChallenge",
                 "oxCodeChallengeHash",
                 "oxPublicKeyId",
+                "oxPublicKeyIdHash",
                 "personInum",
                 "oxRegistrationData",
+                "oxDeviceData",
                 "oxDeviceNotificationConf",
                 "oxCounter",
-                "oxStatus"
+                "oxStatus",
+                "exp",
+                "del"
             ],
             "must": [
                 "objectclass"

diff --git a/templates/base.ldif b/templates/base.ldif
@@ -142,6 +142,21 @@ objectClass: top
 objectClass: organizationalUnit
 ou: device
 
+dn: ou=fido2,o=gluu
+objectClass: top
+objectClass: organizationalUnit
+ou: fido2
+
+dn: ou=fido2_register,ou=fido2,o=gluu
+objectClass: top
+objectClass: organizationalUnit
+ou: fido2_register
+
+dn: ou=fido2_auth,ou=fido2,o=gluu
+objectClass: top
+objectClass: organizationalUnit
+ou: fido2_authenticate
+
 ################################
 
 # U2F data - LEVEL 2

diff --git a/templates/oxauth/oxauth-static-conf.json b/templates/oxauth/oxauth-static-conf.json
@@ -16,6 +16,8 @@
         "metric":"ou=statistic,o=metric",
         "sectorIdentifiers": "ou=sector_identifiers,o=gluu",
         "ciba": "ou=ciba,o=gluu",
-        "stat": "ou=stat,o=gluu"
+        "stat": "ou=stat,o=gluu",
+        "fido2Attestation":"ou=fido2_register,ou=fido2,o=gluu",
+        "fido2Assertion":"ou=fido2_auth,ou=fido2,o=gluu"
     }
 }