twofactorverify command to support push notification via blocking calls (FortiAuthenticator)
We discussed multiple approaches: we currently settled with triggering push when starting the command and wait for response in the background, while also providing an OTP prompt for the user. This adds support for providers that uses blocking calls for push auth, like FortiAuthenticator
.
This should build on the API endpoints introduced by gitlab#322595 (closed). If push is not supported by the OTP provider configure in gitlab-rails
, we ignore the error message and wait for the OTP prompt.
Edited by Imre Farkas