Descrizione

Vai nella sezione “Opzioni Two-Factor” sotto “Utenti” → “Profilo” per abilitare e configurare uno o più provider di autenticazione a due fattori per il tuo account:

Codici via email
Password usa e getta basate sul tempo (TOTP, Time Based One-Time Passwords)
FIDO Universal 2nd Factor (U2F)
Codici di backup
Simulazione (solo per scopi di test)

Per saperne di più vedi questo articolo.

Azioni & filtri

Ecco una lista di azioni e filtri forniti dal plugin:

il filtro two_factor_providers modifica i provider del secondo fattore disponibili, come email e password usa e getta basate sul tempo. I valori dell’array sono nomi di classi PHP dei provider del secondo fattore.
il filtro two_factor_enabled_providers_for_user modifica la lista dei provider del secondo fattore abilitati per un utente. Il primo argomento è un array contenente come valori i nomi di classi dei provider abilitati, il secondo argomento è l’ID dell’utente.
l’azione two_factor_user_authenticated che riceve l’oggetto WP_User dell’utente connesso come primo argomento per individuare, subito dopo la procedura di autenticazione, l’utente connesso.
il filtro two_factor_token_ttl modifica l’intervallo di tempo in secondi che viene considerato per un token email dopo la sua generazione. Accetta il tempo in secondi come primo argomento e l’ID dell’oggetto WP_User da autenticare.

Screenshot

Le opzioni per i due fattori nella pagina del profilo dell'utente.
La sezione delle chiavi di sicurezza U2F nella pagina del profilo dell'utente.
Invio del codice di autenticazione tramite email durante l'accesso a WordPress.

FAQ

How can I send feedback or get help with a bug?

The best place to report bugs, feature suggestions, or any other (non-security) feedback is at the Two Factor GitHub issues page. Before submitting a new issue, please search the existing issues to check if someone else has reported the same feedback.

Where can I report security bugs?

The plugin contributors and WordPress community take security bugs seriously. We appreciate your efforts to responsibly disclose your findings, and will make every effort to acknowledge your contributions.

To report a security issue, please visit the WordPress HackerOne program.

Recensioni

Arslan Kalwar 24 Maggio 2023

As a contributor to the Two-Factor WordPress Plugin, I'm excited to present my review of this exceptional security solution. This plugin operates flawlessly, delivering a streamlined and user-friendly interface for configuring two-factor authentication (2FA) with minimal effort. One of the aspects I'm particularly fond of is its commitment to focusing on a single function while excelling at it, providing users with a reliable and efficient solution. In this review, I will delve deeper into the plugin's impressive features and highlight its effectiveness in enhancing WordPress security. Impressive Simplicity: The Two-Factor WordPress Plugin truly shines in its simplicity. Configuring 2FA is a breeze, thanks to its straightforward and intuitive interface. Even users with minimal technical knowledge can easily set up the plugin without any hassle. By focusing on the core functionality of two-factor authentication, the plugin avoids overwhelming users with unnecessary features, ensuring a smooth and uncomplicated experience. User-Centric Design: The plugin's user-centric design is a testament to its effectiveness. It prioritizes the needs and preferences of users, providing them with a seamless and efficient 2FA setup process. Whether users opt for time-based one-time passwords (TOTP), QR code scanning, or other authentication methods, the plugin caters to their diverse requirements, enhancing security without compromising convenience. The straightforward configuration options empower users to strengthen their WordPress logins with just a few clicks. Contributor Involvement: As a proud contributor to the Two-Factor WordPress Plugin, I'm grateful for the opportunity to be part of a project that prioritizes user security. Collaborating with the dedicated development team has been an enriching experience, and I've witnessed firsthand their commitment to excellence and attention to detail. Contributing to this plugin has allowed me to play a role in providing users with a reliable and effective security solution for their WordPress websites. Conclusion: In conclusion, the Two-Factor WordPress Plugin stands out as a remarkable tool for enhancing WordPress security. Its flawless performance, coupled with a user-friendly interface, makes it a top choice for configuring two-factor authentication with ease. The plugin's simplicity is commendable, offering users a focused and streamlined solution without overwhelming them with unnecessary features. As a contributor to this exceptional project, I take great pride in recommending the Two-Factor WordPress Plugin to WordPress users who value simplicity, security, and reliability.

fahimmurshed 24 Maggio 2023

This plugin functions flawlessly! It provides users with a straightforward and straightforward interface for configuring two-factor authentication (2FA), requiring minimal configuration, if any. What I appreciate most is that it focuses on doing one thing exceptionally well, as opposed to overwhelming users with a multiplicity of unrelated features.