[BlueOnyx:26749] Re: GUI development: BlueOnyx 2FA for GUI logins
Michael Stauber
mstauber at blueonyx.it
Thu Feb 8 03:49:29 -05 2024
Hi Taco,
> Just one question: what if a user “looses” his/her 2FA device/app?
> Have you thought of introducing a “reset tokens”?
This is already included in our existing 2FA implementation:
https://www.blueonyx.it/auth
See the image under the heading "2FA Credentials for Users". It's the
last image on that page.
There you have the authentication key for manually registering with a
device, five "one-time-codes" and the 2FA QR-image to easily scan in the
config into an app.
We do have to keep in mind that 2FA highly depends on the server time
being fully up to date. There may be some drift and the authentication
window is 30 seconds. But if the server has a wholly out of whack date,
then 2FA auth via an app might not work. But via the one-time-code it will.
--
With best regards
Michael Stauber
More information about the Blueonyx
mailing list