Jump to content

Two-step Authentication for IPB


Milad IPBPlug.in
 Share

Recommended Posts

%7Boption%7D



File Name: Two-step Authentication for IPB

File Submitter: Milad IPBPlug.in

File Submitted: 12 Dec 2013

File Category: Security

Supported Versions: IP.Board 3.4.x



I'm happy to announce the immediate availability of the Two-step Authentication for IPB on ipbplug.in and IPS Marketplace.

Two-step authentication adds an extra layer of protection to your account. Whenever you sign in to your website, you will need to enter both your password and also a six-digit one-time security code generated by Google Authenticator on your mobile, or by other similar mobile applications.

We took the time to prepare a video that explains everything about the app:



Feel free to create an account at https://ipbplug.in and try to use this new app.

Compatibility:

The app has been designed and tested for IPB 3.4.6. It's not tested for older versions, but it could be compatible though, especially for IPB 3.4.x

It works with the following Authenticators:Pricing:
The initial price is $17.5 for 6 months. The subscription can be renewed for $6 for another 6 months if and when you feel that you need to install the future updates and upgrades.

Credits:
We are using PHPGangstas GoogleAuthenticator which is Licensed under the BSD License.

Custom work:
Do you need custom work for your IP.Board? please feel free to contact me.



here to download this file

Link to comment
Share on other sites

I understand the 2 step for initial authentication - but to have to provide that EVERY time seems excessive?

I have Google Authenticator for many google products and only have to enter it once per device / site / service, and from google can divorce permission to said site/service thru googles admin pages.

Can this provide same experience to IPB?

Link to comment
Share on other sites

Hello,

Thanks for creating a two-step verification addition for IPB.

I did find what seems a slight issue when scanning the barcode (Google Authenticator). Scanning did not work correctly. I would receive an error message stating the key was invalid. This was same if generated code was manually entered. The issue seems to be with the description. If the description contains a space, the code would report an invalid code. This occurred on a IOS device.

I figured it out. If there is a space in the Name of the Site (i.e. My Blog) then it fails but if you type without space (i.e. MyBlog) then the code goes through.

Reference URL:

http://wordpress.org/support/topic/plugin-google-authenticator-scanning-barcode-doesnt-work

I was able to manually enter a name without a space and the generated code to successfully enable the two-step verification. While it is working, the space issue in the description preventing successful scanning is a limitation which will not allow for me to make this available for our board customers.

2nd Issue:

Accessing the Two-Step Authentication for IPB from the ACP tools menu does not appear to function correctly (at least not for my installation). The link in the ACP seems to be pointing to a URL which ends with "&app=twostepauth" but instead redirects to a members listing with an error message.

post-136664-0-98553200-1387500329_thumb.

Just thought I'd share the findings I have so far. I appreciate the app and look forward the correction to the scanning for IOS devices so I can roll this feature to our customers.

Regards,

Link to comment
Share on other sites

Hello,

Thanks for creating a two-step verification addition for IPB.

I did find what seems a slight issue when scanning the barcode (Google Authenticator). Scanning did not work correctly. I would receive an error message stating the key was invalid. This was same if generated code was manually entered. The issue seems to be with the description. If the description contains a space, the code would report an invalid code. This occurred on a IOS device.

Reference URL:

http://wordpress.org/support/topic/plugin-google-authenticator-scanning-barcode-doesnt-work

I was able to manually enter a name without a space and the generated code to successfully enable the two-step verification. While it is working, the space issue in the description preventing successful scanning is a limitation which will not allow for me to make this available for our board customers.

2nd Issue:

Accessing the Two-Step Authentication for IPB from the ACP tools menu does not appear to function correctly (at least not for my installation). The link in the ACP seems to be pointing to a URL which ends with "&app=twostepauth" but instead redirects to a members listing with an error message.

attachicon.gifACP Error for Two-Step Verification.png

Just thought I'd share the findings I have so far. I appreciate the app and look forward the correction to the scanning for IOS devices so I can roll this feature to our customers.

Regards,

Hello

I have uploaded a new version that fixed the space issue for iOS.

For the second issue, it's not a bug. The app has nothing to show in the Admin CP. The only function there is the ability to remove GA setup for a member by using a new link in the actions menu (the one you see when you edit a member).

Please let me know if you face further issues.

Regards

Link to comment
Share on other sites

Hello

I have uploaded a new version that fixed the space issue for iOS.

For the second issue, it's not a bug. The app has nothing to show in the Admin CP. The only function there is the ability to remove GA setup for a member by using a new link in the actions menu (the one you see when you edit a member).

Please let me know if you face further issues.

Regards


Downloaded and installed the update.

Thank you for the quick update!
Link to comment
Share on other sites

  • 2 weeks later...
  • 1 month later...
  • 1 month later...
  • 1 month later...

Hi Milad

After losing data on my own mobile phone over the weekend, I had to re-install and reconfigure two step auth.

Luckily I did not have to put in a code on my ACP, or i'd be stuffed right now.

I suggest that you have a way to retrieve or disable two step auth, that involves SMS a code to a number (or numbers) in the case of this scenario. I understand that you could disable two step auth via twostepauth_enabled in the members SQL table, but some people are not efficient enough to consider (or even attempt) this.

Your thoughts?

Link to comment
Share on other sites

Hi Milad

After losing data on my own mobile phone over the weekend, I had to re-install and reconfigure two step auth.

Luckily I did not have to put in a code on my ACP, or i'd be stuffed right now.

I suggest that you have a way to retrieve or disable two step auth, that involves SMS a code to a number (or numbers) in the case of this scenario. I understand that you could disable two step auth via twostepauth_enabled in the members SQL table, but some people are not efficient enough to consider (or even attempt) this.

Your thoughts?


I think the best option here is to add a tools.php file, where you can disabled 2SA for certain users.
Link to comment
Share on other sites

  • 4 months later...

I think the best option here is to add a tools.php file, where you can disabled 2SA for certain users.

I'll check this in the next release.


Hi

Can you confirm if these two issues were resolved please and secondly can you confirm if this can be set to allow the following;

Make Two Factor Authentication for certain groups to use it and not others
Enforce use of two factor authentication for certain groups (ie admin and moderators)
Link to comment
Share on other sites

  • 3 weeks later...

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...