EmailTwoStepAuthContrib.zip
in your twiki installation directory. Content: File: | Description: |
---|---|
data/TWiki/EmailTwoStepAuthContrib.txt | Contrib documentation topic |
pub/TWiki/EmailTwoStepAuthContrib/*.png | Image files |
templates/emailtwosteplogin.tmpl | Second login screen template |
templates/emailtwostepmessage.tmpl | E-mail Message with access code template |
lib/TWiki/Contrib/EmailTwoStepAuthContrib.pm | Contrib Perl module |
lib/TWiki/Contrib/EmailTwoStepAuthContrib/Config.spec | Configure spec file |
lib/TWiki/LoginManager/EmailTwoStepAuth.pm | Login manager for two-step login via e-mail |
lib/TWiki/LoginManager/TemplateLogin.pm
to the latest version from the SVN repository, http://svn.twiki.org/svn/twiki/branches/TWikiRelease06x00/core/lib/TWiki/LoginManager/TemplateLogin.pmlib/TWiki.spec
: Below $TWiki::cfg{LoginManager}
add the following content, also at http://svn.twiki.org/svn/twiki/branches/TWikiRelease06x00/core/lib/TWiki.spec# **SELECTCLASS none,TWiki::LoginManager::*TwoStepAuth**
# TWiki can be configured to require two-step authentication, which is more
# secure because it makes it harder to impersonate a user. The first step is
# the usual authentication with username and password. After a successful
# first step, a second authentication step is required in order to log in.
# The two steps should be of different types, such as something the user
# <i>knows</i> (username and password), and something the user <i>has</i>
# (mobile phone with SMS). Two-step authentication currently requires
# {LoginManager} set to 'TWiki::LoginManager::TemplateLogin'.
# Available two-step authentication managers:
# <ol><li>
# none - Disable two-step authentication.
# </li><li>
# TWiki::LoginManager::EmailTwoStepAuth - Use e-mail for second step
# authentication. User receives e-mail with one-time-use access code.
# Requires installation of EmailTwoStepAuthContrib.
# Requires enabling {UseClientSessions} to track client sessions.
# </li><li>
# TWiki::LoginManager::SmsTwoStepAuth - Use SMS for second step
# authentication. User receives e-mail with one-time-use access code.
# Requires installation of SmsTwoStepAuthContrib.
# Requires enabling {UseClientSessions} to track client sessions.
# </li></ol>
$TWiki::cfg{TwoStepAuthManager} = 'none';
{LoginManager}
needs to be set to TWiki::LoginManager::TemplateLogin
{TwoStepAuthManager}
to TWiki::LoginManager::EmailTwoStepAuth
{EmailTwoStepAuthContrib}{WhitelistAddresses} = '';
{EmailTwoStepAuthContrib}{MaxAge} = 600;
{EmailTwoStepAuthContrib}{MessageTmpl} = 'emailtwostepmessage';
{EmailTwoStepAuthContrib}{LoginTmpl} = 'emailtwosteplogin';
{EmailTwoStepAuthContrib}{AcessCodeError} = 'Invalid or outdated access code, please try again.';
Author: | TWiki:Main.PeterThoeny![]() |
Copyright: | © 2014 Wave Systems Corp. © 2014 TWiki:Main.PeterThoeny ![]() © 2014 TWiki:TWiki.TWikiContributor ![]() |
License: | GPL ( GNU General Public License![]() |
Sponsor: | Wave Systems Corp.![]() |
Version: | 2014-08-25 |
Change History: | |
2014-08-25: | TWikibug:Item7539![]() |
TWiki Dependency: | $TWiki::Plugins::VERSION 6.1 |
CPAN Dependencies: | none |
Other Dependencies: | none |
Perl Version: | 5.005 |
Plugin Benchmark![]() |
GoodStyle nn%, FormattedSearch nn%, EmailTwoStepAuthContrib nn% |
Home: | http://TWiki.org/cgi-bin/view/Plugins/EmailTwoStepAuthContrib![]() |
Feedback: | http://TWiki.org/cgi-bin/view/Plugins/EmailTwoStepAuthContribDev![]() |
Appraisal: | http://TWiki.org/cgi-bin/view/Plugins/EmailTwoStepAuthContribAppraisal![]() |