Details
-
Improvement
-
Resolution: Unresolved
-
Neutral
-
None
-
-
Empty show more show less
Description
I have recently installed and run this module.
The first step in the docs, securityCallback, was not necessary. The login form is changed automatically via bootstrap. See: https://git.magnolia-cms.com/projects/INCUBATOR/repos/google-2fa-authenticator/browse/google-2fa-authenticator/src/main/resources/mgnl-bootstrap/google-2fa-authenticator/config/config.server.filters.securityCallback.clientCallbacks.form.xml
The third step, qrCodeEmailTemplate, is also not necessary.
Bootstrap: https://git.magnolia-cms.com/projects/INCUBATOR/repos/google-2fa-authenticator/browse/google-2fa-authenticator/src/main/resources/mgnl-bootstrap/google-2fa-authenticator/config/config.modules.mail.config.templatesConfiguration.ga2faQrCodeEmailTemplate.xml
The final step, OTP Issuer Config, is also bootstrapped. See: https://git.magnolia-cms.com/projects/INCUBATOR/repos/google-2fa-authenticator/browse/google-2fa-authenticator/src/main/resources/mgnl-bootstrap/google-2fa-authenticator/config/config.modules.google-2fa-authenticator.config.xml
The docs neglect to mention that to enable 2FA an administrator must flip the boolean property at /modules/google-2fa-authenticator/config@enable2FA