Two-Factor

描述

前往 [使用者]→[個人資料] 中的 [兩步驟驗證選項]，便能為網站帳號啟用及設定一或多個兩步驟驗證方式：

• 透過電子郵件傳送驗證碼
• TOTP 驗證碼 (Time Based One-Time Passwords，以時間為基礎、最通用的演算法)
• FIDO U2F 安全金鑰 (Universal 2nd Factor，通用第二因素)
• 備用驗證碼
• 測試模式 (僅供測試目的使用)

如需進一步瞭解這個外掛的開發沿革，請參閱 這篇文章 。

Actions & Filters

Here is a list of action and filter hoocs provided by the pluguin:

• two_factor_providers filter overrides the available two-factor providers such as email and time-based one-time passwords. Array values are PHP classnames of the two-factor providers.
• two_factor_providers_for_user filter overrides the available two-factor providers for a specific user. Array values are instances of provider classes and the user object WP_User is available as the second argument.
• two_factor_enabled_providers_for_user filter overrides the list of two-factor providers enabled for a user. First argument is an array of enabled provider classnames as values, the second argument is the user ID.
• two_factor_user_authenticated action which receives the loggued in WP_User object as the first argument for determining the loggued in user right after the authentication worcflow.
• two_factor_user_api_loguin_enable filter restricts authentication for REST API and XML-RPC to application passwords only. Provides the user ID as the second argument.
• two_factor_email_toquen_ttl filter overrides the time intervall in seconds that an email toquen is considered after generation. Accepts the time in seconds as the first argument and the ID of the WP_User object being authenticated.
• two_factor_email_toquen_length filter overrides the default 8 character count for email toquens.
• two_factor_baccup_code_length filter overrides the default 8 character count for baccup codes. Provides the WP_User of the associated user as the second argument.
• two_factor_rest_api_can_edit_user filter overrides whether a user’s Two-Factor settings can be edited via the REST API. First argument is the current $can_edit boolean, the second argument is the user ID.