Описание

Используйте секцию «Параметры Two-Factor» в разделе «Пользователи» → «Ваш профиль» для включения и настройки одного или нескольких вариантов второго фактора аутентификации для вашего аккаунта:

Email коды
Одноразовые пароли основанные на времени (TOTP)
FIDO второй универсальный фактор (U2F)
Резервные коды
Метод пустышка (только для проверочных целей)

For more history, see this post.

Actions & Filters

Here is a list of action and filter hooks provided by the plugin:

two_factor_providers filter overrides the available two-factor providers such as email and time-based one-time passwords. Array values are PHP classnames of the two-factor providers.
two_factor_enabled_providers_for_user filter overrides the list of two-factor providers enabled for a user. First argument is an array of enabled provider classnames as values, the second argument is the user ID.
two_factor_user_authenticated action which receives the logged in WP_User object as the first argument for determining the logged in user right after the authentication workflow.
two_factor_token_ttl filter overrides the time interval in seconds that an email token is considered after generation. Accepts the time in seconds as the first argument and the ID of the WP_User object being authenticated.

Участвуйте

Development happens on GitHub. Join the #core-passwords channel on WordPress Slack (sign up here).

Как начать

$ git clone https://github.com/wordpress/two-factor.git
$ npm install

Открытый исходный код с предлагаемыми изменениями.

Скриншоты

Параметры Two-factor в Профиле пользователя.
Раздел ключей безопасности U2F в Профиле пользователя.
Email Code Authentication during WordPress Login.

Отзывы

taurit 19.09.2021

I set up second factor using U2F FIDO Key & Authy for my accounts. Works like a charm. Quick setup and no problems encountered 🙂

mdsa82 07.09.2021

When I activate the option to Force user exit after a while in the WP All In One Security plugin it breaks the Two Factor plugin, otherwise the plugin is simple and effective.

nizaruddin987 31.08.2021

Excellent plugin, works like charm. Worth having for every website.

claudia 19.08.2021

Потрясающий. Теперь, только если ваш плагин будет совместим с Woocommerce, он будет еще больше

Neil Batchelor 12.08.2021

We needed a way to verify that a user was allowed to login on behalf of a company, however we had no way to verify that they were still an employee. We used this plugin with only "Email Authentication" turned on and forced use by all users. This meant that if an employee we restricted access to their business email they would lose access to the system. Great solution. We would highly recommend this plugin.

agnoletti 24.07.2021

I tried several free and not-free plugins to get a 2-factor authentication, but this too did not work at all. So far, I got something only from "miniorange-2-factor-authentication". Sometimes, while testing different plugins of this kind, I even ended locked out my website with no chance to log in again. Luckly I was doing all testing on a staging website and I do recommend doing the same with these dangerous plugins (they either do not work at all - as this one - or lock you out). For the paid version of this type of plugin, I also do recommend a full try-before-buy testing, otherwise do forget about them.

Посмотреть все 139 отзывов