2FA for Flarum
MIT License
A Flarum extension. 2FA for Flarum
This extension requires a minimum of PHP 8.1, due to a 3rd party library constraint.
admin
accounts to have 2FA enabled for increased securitylogin
, forgot password
endpointsfof/oauth
to protect OAuth logins to protected accountsThis extension provides the ability to view the status of 2FA of other users (intended for admin and/or moderator use). In order for this to function correctly, you must also set the permission Moderate Access Tokens
to at least the same group as you require for View 2FA status of other users
.
Install with composer:
composer require ianm/twofactor:"*"
composer update ianm/twofactor
php flarum migrate
php flarum cache:clear
Independantly of the setting, you may remove dormant access tokens using the CLI. The days setting defaults to 30 days, and the CLI will still respect this value from the extension settings, as well as the developer token setting:
php flarum twofactor:kill-inactive-tokens
TODO
Please consider supporting my extension development and maintenance work.