perun icon indicating copy to clipboard operation
perun copied to clipboard
verified publisher icon CESNET

feat(core): check MFA rules

Open cuadradek opened this issue 3 years ago • 0 comments

  • Method AuthzResolverBlImpl.isAuthorized was extended to check MFA rules. MFAPrivilegeException is thrown when a policy requires MFA on an object marked as critical, but the principal isn't authenticated with MFA.
  • The MFA rules are checked only when config property enforceMfa is true.

cuadradek avatar Aug 30 '22 19:08 cuadradek