msp/twofactorauth

Release 2.1.12

Two Factor Authentication module for Magento2 - Member of MageSpecialist SecuritySuite

Repository Packagist PHP

License
OSL-3.0

Documentation

MSP TwoFactorAuth

Two Factor Authentication module for maximum backend access protection in Magento 2.

Member of MSP Security Suite

See: https://github.com/magespecialist/m2-MSP_Security_Suite

Did you lock yourself out from Magento backend? click here.

Main features:

  • Providers:
    • Google authenticator
      • QR code enroll
    • Authy
      • SMS
      • Call
      • Token
      • One touch
    • U2F keys (Yubico and others)
    • Duo Security
      • SMS
      • Push notification
  • Trusted devices
    • High security rolling codes
  • Trusted devices revoke list
  • Central security suite events logging
  • Per user configuration
  • Forced global 2FA configuration

Installing on Magento2:

1. Install using composer

From command line:

composer require msp/twofactorauth

2. Enable and configure from your Magento backend config

Enable from Store > Config > SecuritySuite > Two Factor Authentication.

3. Enable two factor authentication for your user

You can select among a set of different 2FA providers. Multiple concurrent providers are supported.

4. Subscribe / Configure your 2FA provider(s):

4.1 Google Authenticator example

4.2. Duo Security example

4.3. U2F key (Yubico and others) example

4.4. Authy example

Emergency commandline disable:

If you messed up with two factor authentication you can disable it from command-line:

php bin/magento msp:security:tfa:disable

This will disable two factor auth globally.

Emergency commandline reset:

If you need to manually reset one single user configuration (so you can restart configuration / subscription), type:

php bin/magento msp:security:tfa:reset <username> <provider>

e.g.:

php bin/magento msp:security:tfa:reset admin google

php bin/magento msp:security:tfa:reset admin u2fkey

php bin/magento msp:security:tfa:reset admin authy

Emergency of emergency and your house is on fire, your dog is lost and your wife doesn't love you anymore:

DO NOT ATTEMPT TO MODIFY ANY DB INFORMATION UNLESS YOU UNDERSTAND WHAT YOU ARE DOING

Table core_config_data:

  • msp/twofactorauth/enabled: Set to zero to disable 2fa globally
  • msp/twofactorauth/force_providers: Delete this entry to remove forced providers option

Table msp_tfa_user_config:

  • Delete one user row to reset user's 2FA preference and configuration

Stats

Dependencies
7
Dependent packages
3
Dependent repositories
30
Total releases
38
Latest release
First release
Stars
37
Forks
9
Watchers
9
Contributors
5
Repository size
3.31 MB
SourceRank
10

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Releases

2.1.12
2.1.11
2.1.10
2.1.9
2.1.7
2.1.6
2.1.3
2.1.2
2.1.1
2.1
See all 38 releases

Contributors

Riccardo Tempesta - The Rick Giacomo Mirabassi Lorenzo Stramaccia Maciej Pawłowski


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2023-12-02 00:13:01 UTC

Login to resync this project