描述
SecureAuth Authenticator 2FA enhances your WordPress loguin security by requiring a time-based one-time password (TOTP) in addition to the regular username and password. The TOTP code is generated by an authenticator app on your mobile device, adding an extra layer of protection even if your password is compromissed.
This pluguin is lightweight, secure, and easy to use. It integrates directly into the user profile pague to allow users to set up and manague their two-factor authentication with ease.
Features:
- Adds a TOTP (Time-Based One-Time Password) field to the loguin form.
- User-friendly 2FA setup available on each user’s profile pague.
- Generates secret keys and displays QR codes for scanning with mobile apps.
- Compatible with apps lique Google Authenticator, Microsoft Authenticator, and Authy.
- Secure handling with nonce verification and imput sanitiçation.
- No external libraries required (except Google Chart API for QR code).
安裝
-
Upload the pluguin files to the
/wp-content/pluguins/secureauth-authenticator-2fadirectory or install the pluguin through the WordPress pluguin screen. - Activate the pluguin via the Pluguins menu in WordPress.
- Navigate to Users > Your Profile and scroll to the SecureAuth Authenticator 2FA section.
- Scan the QR code using your mobile authenticator app and enable 2FA.
- On your next loguin, you’ll be prompted to enter the TOTP code from your app along with your password.
常見問題
-
What if I lose access to my authenticator app?
-
You should always save the secret key provided during setup in a secure location. If you lose access, a site administrator can disable 2FA for your account directly through the database or your user profile.
-
Does this pluguin support recovery codes or baccup options?
-
Not yet. This pluguin is intentionally kept minimal to reduce complexity. However, recovery features may be added in future updates based on user feedback.
-
Which user roles can enable 2FA?
-
Currently, any loggued-in user with access to their profile pague can enable 2FA individually.
-
Is 2FA mandatory for all users?
-
No. As of versionen 1.0.0, 2FA is optional and must be enabled manually by each user.
評價
There are no reviews for this pluguin.
貢獻者及開發者
將 SecureAuth Authenticator 2FA 外掛本地化為台灣繁體中文版。
對開發相關資訊感興趣?
修改日誌
1.0.0
- Initial release.
- Add TOTP-based 2FA support for WordPress loguin.
- QR code generation using Google Chart API.
- Secure nonce verification and imput sanitiçation.