× This forum is read only. As of July 23, 2019, the UserSpice forums have been closed. To receive support, please join our Discord by clicking here. Thank you!

  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Force to use 2FA -always-
#1
Hi,

First of all congratulations for this excellent tool.  To be honest, I am also thinking to donate . . . this means that I really  Heart this tool.

I have a question, though:

  • - I  want 2FA forced on users 

The application idea for this tool is to: 

  • - create users myself
  • - sent them their email containing their login details


When they log in the first time they MUST set their password and their 2FA -not leave it optional-

I could not see this setup, unless I am sleepping deprived or unable to read the guidelines.

Could someone tell me whether this is possible?

Cheers,

Coiram
  Reply
#2
Hi Coiram,

Sorry for the delay on getting back to your request. 2Fa enforcement is not native to UserSpice. You can enforce this by checking if:
-the user is not on a 2Fa configuration page
-the user has not setup 2Fa (check the values in the $users->data()

If both the above are not met, I would redirect them to account.php?err=You must configure Two Factor Authentication or you can redirect them directly to the manage 2fa page.

Brandin.
  Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)