Download the PHP package born05/craft-twofactorauthentication without Composer
On this page you can find all versions of the php package born05/craft-twofactorauthentication. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Download born05/craft-twofactorauthentication
More information about born05/craft-twofactorauthentication
Files in born05/craft-twofactorauthentication
Package craft-twofactorauthentication
Short Description Craft 4 plugin for two-factor or two-step login using Time Based OTP.
License MIT
Homepage https://github.com/born05/craft-twofactorauthentication
FAQ
Example:
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
- Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
- To use Composer is sometimes complicated. Especially for beginners.
- Composer needs much resources. Sometimes they are not available on a simple webspace.
- If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
- Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.
Informations about the package craft-twofactorauthentication
Two-Factor Authentication
Craft 4 plugin for two-factor or two-step login using Time Based OTP (TOTP, like Google Authenticator). Every user can setup TOTP themselves, the plugin does not force users. Admins can list usage in user tables.
Inner working
Login works as usual for users without 2-factor auth.
When enabled, the user is redirected to the 2-factor verification page after login. This means the user is already logged in. When the user tries to visit an other Control Panel page than the public ones before verification, the logout is triggered. This blocks the user from visiting the CP unverified.
Requirements
- Craft 4.0.0 and up
- PHP 8.1 and up
Setting up back end 2FA
- Set
verifyBackEndtotruein the config file (this is the default). - Set
forceBackEndtotrueif you want to prevent users from accessing the control panel without first enabling 2FA.
Setting up front end 2FA
When using a login for front end users, the following steps add 2FA support.
- Copy the two-factor-authentication.php file to your
config/folder. - Set
verifyFrontEndtotruein the config file. - Define what urls should be protected with 2FA verification. Choose between using the
frontEndPathAlloworfrontEndPathExclude! Using both will block everything! See config for additional info. - Build a 2FA login-verify form accessible by url like the example twig.
- Set the
verifyPath. For ourlogin-verify.twigexample the path would belogin-verify. - Allow users setting up 2FA in front end by building a template like the example twig.
- Set the
settingsPath. For ourtwo-factor-settings.twigexample the path would betwo-factor-settings.
Setting up config
Copy the two-factor-authentication.php file to your config/ folder.
Resetting a user's 2FA
Simply remove the user's twofactorauthentication_user record. This disables 2FA for that user.
Screens
Setting screen when turning 2FA on
Setting screen when turning 2FA off
Login verification screen
License
Copyright © Born05
See license
All versions of craft-twofactorauthentication with dependencies
craftcms/cms Version ^4.0.0-alpha
spomky-labs/otphp Version ^11.0.0
endroid/qr-code Version ^5.0.0