Expand description
Pluggable challenge framework for NDNCERT.
Modules§
- Email challenge — CA sends a one-time code to an email address, client submits it.
- pin
- PIN/OTP challenge — client proves identity by submitting a pre-shared PIN.
- possession
- Possession challenge — client proves they already hold a trusted certificate by signing the request ID with their existing key.
- token
- Token challenge — client proves identity by submitting a pre-provisioned one-time token.
- yubikey
- YubiKey HOTP challenge — hardware one-time-password bootstrapping.
Structs§
- Challenge
State - Opaque per-challenge state stored by the CA between request steps.
Enums§
- Challenge
Outcome - Outcome returned by
ChallengeHandler::verify.
Traits§
- Challenge
Handler - A pluggable challenge handler for the NDNCERT CA.