[cic] missing support for SMS fallback
Since a few weeks, the DSP2 fun has reached CIC and some SMS-based confirmation is needed when no mobile application has been set up.
I've seen !392 (closed) has reached master, and I've developed a little proof of concept for the SMS-based fallback, that seems to work well enough for me to run ls
and history
on my personal account.
→ 0001-cic-Implement-SMS-based-fallback-authentication.patch
This requires an interactive run, to be able to enter the PIN (apparently 6 digits, which I've seen for all the ~20 attempts, and which matches the maxlength
attribute of the relevant input
field, but I didn't validate user input as I wasn't entirely sure this ought to happen), and as @Air-One noted in #317 (closed), one needs to go through the SMS fallback again after a few minutes.
In summary: not a definitive solution, even if it should be a step in the right direction for mobile application non-users.