TOTP handler
Summary
TOTP handler is a handler that accepts tokens that contains a TOTP value. This is a sort of Human-less ServiceToken handler.
Design proposition
Client header contains WWW-Authenticate: user:<TOTP value>
, handler get secret from lemonldap-ng.ini (or a distinct file ? or a LLNG database ?) and verifies the TOTP value, then calculates a temporary session (like AuthBasic handler using a valid username or a pre-defined session ?).
Comments are welcome