1
0
mirror of https://github.com/Yubico/yubikey-val.git synced 2024-11-29 00:24:13 +01:00
YubiKey OTP validation server in PHP
Go to file
Benno Rice 28f399482b Increase the parallelism of queue processing.
Since the api servers have 4 vCPUs each we can handle sending them more than
one queue request at a time.
2019-10-22 14:07:14 +11:00
doc Doc: Fixing broken link 2019-02-03 23:53:05 +01:00
travis Fix failing tests. 2015-08-12 10:50:08 +02:00
.gitignore ignore release artifacts 2012-06-12 09:23:32 +02:00
.travis.yml drop php 5.3 from travis 2017-12-14 12:58:48 +01:00
AUTHORS Simplify license headers. 2010-04-23 18:07:10 +00:00
BLURB Doc fix. 2014-09-24 17:59:31 +02:00
COPYING Update copyright year. 2015-07-20 20:01:16 +00:00
Makefile Bump versions. 2016-11-01 10:39:55 +01:00
NEWS Bump versions. 2016-11-01 10:39:55 +01:00
README Update README 2014-10-29 14:17:50 +01:00
README.adoc symlinked README 2014-10-29 14:18:58 +01:00
ykval-checksum-clients Refactor include paths. 2015-09-08 10:57:26 +02:00
ykval-checksum-clients.1 Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-checksum-deactivated Refactor include paths. 2015-09-08 10:57:26 +02:00
ykval-checksum-deactivated.1 Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-common.php Silence php notice. 2016-06-08 13:51:12 +02:00
ykval-config.php Add sl and timeout to request log variables. 2016-04-18 16:33:00 +02:00
ykval-db-oci.php Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-db-pdo.php Refactor. 2015-08-18 12:04:30 +02:00
ykval-db.oracle.sql Remove trailing whitespace. 2015-07-15 16:55:06 +02:00
ykval-db.php Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-db.sql raise nonce limit to 40 chars as that's what we say in the documentation 2012-05-08 13:41:11 +02:00
ykval-export Refactor include paths. 2015-09-08 10:57:26 +02:00
ykval-export-clients Refactor include paths. 2015-09-08 10:57:26 +02:00
ykval-export-clients.1 Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-export.1 Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-gen-clients Refactor include paths. 2015-09-08 10:57:26 +02:00
ykval-gen-clients.1 Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-import Refactor include paths. 2015-09-08 10:57:26 +02:00
ykval-import-clients Refactor include paths. 2015-09-08 10:57:26 +02:00
ykval-import-clients.1 Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-import.1 Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-log-verify.php Fix issue with $baseParam value. 2016-04-18 16:38:39 +02:00
ykval-log.php Add a verify request log line. 2016-04-18 14:42:57 +02:00
ykval-munin-ksmlatency.php Rewrite ykval-munin-ksmlatency plugin. 2015-09-08 16:47:16 +02:00
ykval-munin-ksmresponses.pl Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-munin-queuelength.php Refactor out function into library. 2015-09-08 17:45:37 +02:00
ykval-munin-responses.pl Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-munin-vallatency.php Fix. 2015-09-09 09:55:21 +02:00
ykval-munin-yubikeystats.php Refactor include paths. 2015-09-08 10:57:26 +02:00
ykval-nagios-queuelength.1 Use TLS for man page www.yubico.com links. 2015-07-20 18:55:46 +00:00
ykval-nagios-queuelength.php Refactor include paths. 2015-09-08 10:57:26 +02:00
ykval-ping.php Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-queue Refactor include paths. 2015-09-08 10:57:26 +02:00
ykval-queue.1 Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-resync.php Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-revoke.php drop unused variable from log 2017-08-04 13:16:28 +02:00
ykval-sync.php make getHttpVal() take the array to extract from 2016-04-29 15:42:37 +02:00
ykval-synchronize Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-synchronize.1 Update copyright year. 2015-07-20 20:01:16 +00:00
ykval-synclib.php Increase the parallelism of queue processing. 2019-10-22 14:07:14 +11:00
ykval-verify.php Refactor. 2016-05-17 11:08:34 +02:00

== YubiKey OTP Validation Server ==

The YubiKey Validation Server (YK-VAL) is a server that validates
Yubikey One-Time Passwords (OTPs).  YK-VAL is written in PHP, for use
behind web servers such as Apache.

General
-------

The server implements the Yubico API protocol as defined in
doc/ValidationProtocol* and further documentation is also available in
the doc/ subdirectory.

This server talks to a KSM service for decrypting the OTPs, to avoid
storing any AES keys on the validation server.  One implementation of
this service is the https://developers.yubico.com/yubikey-ksm[YubiKey-KSM],
and another implementation using the YubiHSM hardware is
https://developers.yubico.com/python-pyhsm[PyHSM].

Note that version 1.x is a minimal centralized server. Version 2.x is
a replicated system that uses multiple machines.

License
-------

The project is licensed under a BSD license.  See the file COPYING for
exact wording.  For any copyright year range specified as YYYY-ZZZZ in
this package note that the range specifies every single year in that
closed interval.