New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Consider mechanism for out of band approvals #74
Comments
@RamblingCookieMonster I could have sworn an issue was created for this but I guess not 😄 This was the major feature added in |
Eek! Completely forgot about that, thanks for the reminder! |
Give it a go and let me know what you think! Out of band and reaction-based approvals would be cool. I just wanted to get it working in a basic state. |
Hiii! So I think this is done in the basic form, going to close this out. Down the line, a more controlled option would be awesome as well, e.g.
Where the second factor might be that secret that the bot sent, or some other pluggable thing (e.g. I might like to hook it up so that the approval requires a 2fa code which is validated via radius You could probably close this issue though, if that was ever a thing we could just open a new issue |
Hiyo!
It might be nice to have a plugin to enable out-of-band approvals.
Example workflow:
Abstract:
User: !Invoke-HighPrivilegeThingy
Bot:
ApproverUser: Perform some sort of approval
Bot: Runs intended command
User: Yay!
Specific example
!HighPrivilegeThing -h Server1
HighPrivilegeThing -h Server 1
from @wframe waiting on approval by reaction or !Approve!PendingApprovals
ID Command From Whatif <might be tough to standardize this>
1234 HighPrivilegeThing wframe HighPrivilegeThing Server1
1233 AnotherCommand jdoe Some other command whatif
!approve 1234
Another specific example
!HigherPrivilegeThing -h Server1
HighPrivilegeThing -h Server 1
from @wframe waiting on approval by !Approve with one-time-password!Approve 1234 abc123
Design considerations:
Probably missing a bunch, these were just a quick brainstorm, figured it might be worth opening this up for discussion
Cheers!
The text was updated successfully, but these errors were encountered: