Ctrl+K

E-mail token with notification & templates

6.1.3. E-mail token with notification & templates#

LinOTP 3.2 supports a notification of the user for the automatic registration of his e-mail token. The option is also available for enrollment in /manage. Two policies are required in LinOTP for activation:

Policie:

Notification of the user for autoenrollment and enrollment of email tokens

name:   '<notify_autoenrollement>'
scope:  'notification'
action: 'autoenrollment=email::enrollmentProvider', 'enrollment=email::enrollmentProvider'

Policie for email autoenrollment

name:   '<email_autoenrollment>'
scope:  'enrollment'.
action: 'autoenrollment=email

The mail provider ‘enrollmentProvider’ is defined as LinOTP providers for email.

In addition to the known parameters of the config, the provider contains the parameter

Additional parmeter in the email provider configuration

"TEMPLATE" : "file://enrollemail.eml"

The value for file:// results from the relative path to the mail templates

/etc/linotp/custom-templates/mailtemplates

Example for a mail template ‘enrollemail.eml’

Muss noch ergänzt werden!!!

Syntax in the template to use token and user characteristics.

LinOTP scope

Template Variable ${var}

Example

autoenroll, enroll, setPin, authentication

username

jdoe

autoenroll, enroll, setPin, authentication

surname

Doe

autoenroll, enroll, setPin, authentication

givenname

John

autoenroll, enroll, setPin, authentication

mobile

+49(0)1234-22

autoenroll, enroll, setPin, authentication

description

John Doe,Room 22,+49(0)1234-22,+49(0)5678-22,John.Doe@example.com

autoenroll, enroll, setPin, authentication

userid

42

autoenroll, enroll, setPin, authentication

email

John.Doe@example.com

autoenroll, enroll, setPin, authentication

phone

+49(0)5678-22

autoenroll, enroll, setPin, authentication

serial

LSEM00015E83

autoenroll, enroll, setPin

Pin

test123!

autoenroll, enroll

tokentype

email

authentication

otp

819033

autoenroll, enroll, setPin, authentication

message

“A new ${tokentype} token (${serial}) with pin ‘${Pin}’ for ${givenname} ${surname} has been enrolled.”

autoenroll, enroll, setPin, authentication

Subject

New email token enrolled