mirror of
https://git.proxmox.com/git/pve-access-control
synced 2025-07-24 20:15:59 +00:00
9de25de807
Can happen if the RTC is in the future during installation and first boot, when during key generation the clock is in the future and then, after the key was already generated, jumps back in time. Allow a fuzz of $auth_graceperiod, which is currently 5 minutes, as that fuzz allows some minor, not really problematic, time sync disparity in clusters. If an old authkey exists, meaning we rotated at least once, check it's time too. Only rotate if it'd not be valid for any tickets in the cluster anymore, i.e., if it difference between the current key is > $ticket_lifetime (2 hours).. Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com> |
||
|---|---|---|
| .. | ||
| API2 | ||
| Auth | ||
| CLI | ||
| AccessControl.pm | ||
| Makefile | ||
| RPCEnvironment.pm | ||
| TokenConfig.pm | ||