Beskrivelse

Bruk «Tofaktor-alternativer»-seksjonen under Brukere → «Din profil» for å slå på og konfigurere en eller flere leverandører av tofaktor-autentisering for din konto:

E-postkoder
Tidsbaserte engangspassord (TOTP)
FIDO universell 2. faktor (U2F)
Reservekoder
Dummy-metode (kun for testingsformål)

For mer historikk, se dette innlegget.

Handlinger og filtre

Her er en liste over handlings- og filter-kroker som tilbys i utvidelsen:

two_factor_providers filter overrides the available two-factor providers such as email and time-based one-time passwords. Array values are PHP classnames of the two-factor providers.
two_factor_enabled_providers_for_user filter overrides the list of two-factor providers enabled for a user. First argument is an array of enabled provider classnames as values, the second argument is the user ID.
two_factor_user_authenticated action which receives the logged in WP_User object as the first argument for determining the logged in user right after the authentication workflow.
two_factor_token_ttl filter overrides the time interval in seconds that an email token is considered after generation. Accepts the time in seconds as the first argument and the ID of the WP_User object being authenticated.

Engasjer deg

Utvikling skjer på GitHub. Bli med i kanalen #core-passwords på WordPress Slack (registrer deg her).

Her er hvordan komme i gang:

$ git clone https://github.com/wordpress/two-factor.git
$ npm install

Åpne så en «pull request» med de foreslåtte endringene.

Skjermskudd

Tofaktor-alternativer på brukerprofilen.
U2F-sikkerhetsnøkler-seksjon på brukerprofilen.
Autentisering med e-postkode ved innlogging på WordPress.

Vurderinger

agnoletti 24. juli, 2021

I tried several free and not-free plugins to get a 2-factor authentication, but this too did not work at all. So far, I got something only from "miniorange-2-factor-authentication". Sometimes, while testing different plugins of this kind, I even ended locked out my website with no chance to log in again. Luckly I was doing all testing on a staging website and I do recommend doing the same with these dangerous plugins (they either do not work at all - as this one - or lock you out). For the paid version of this type of plugin, I also do recommend a full try-before-buy testing, otherwise do forget about them.

masvil 8. juni, 2021

Best way to implement Two-Factor Authentication. It also supports FIDO, which is the safer method. I installed it on all my WordPress sites.

makecake 15. april, 2021

I did not try any other plugin, I will stick with this one. It is very simple yet great. You can get code to your email address or use the one on the authentication app you use, or do both. very simple and easy to use and great.