• Resolved Jakobuz

    (@jakobuz)


    Hello support,
    We want to use the 2FA via email, but sometimes the button in the email does not always work as expected … is it possible to disable that button?
    I could not find anything in the templates (only the text I can change).
    Thanks in advance for your answer!

Viewing 8 replies - 1 through 8 (of 8 total)
  • nlpro

    (@nlpro)

    Hi @jakobuz,

    No, not without making changes to the plugin code.

    but sometimes the button in the email does not always work as expected …

    So what happens? Any error msg?

    And what email client(s) are you using?

    +++ To prevent any confusion, I’m not SolidWP +++

    Thread Starter Jakobuz

    (@jakobuz)

    Thanks for the fast response!

    I give you an example what I mean by “not always works as expected:
    When the administrator send a 2-FA-reminder to a subscriber an email is send to the subscriber to set up 2-FA.
    When the subscriber has configured 2-FA (done via the the login-screen), an e-mail is send to verify. This can be done with the code or via the button that holds an URL with a token).
    When the subscriber uses the button than the subscriber is directed to the login screen again. The login-screen has a message with the text “Complete the two-factor setup”.
    When the sibscriber pushes the continue-button, the same message appears with “set up 2-FA” (note: if the code is used in stead of the button it works correct and the subscriber is redirected to page as configured in the plugin).
    so, it just starts again and 2-FA is not configured for that subscriber.

    Note: the button works correct when 2-FA via email is used to login (so if the 2-FA is allready configured).

    I have tested this several times via Chromium, Firefox, and also cleared the cache and removed the cookies.
    Email-client is old trusted Thunderbird.

    It is quite important for us that subscribers can configure 2-FA by themself, because there are for about 265 subscribers …
    Thanks in advance for your support!

    • This reply was modified 8 months ago by Jakobuz.
    • This reply was modified 8 months ago by Jakobuz.
    Thread Starter Jakobuz

    (@jakobuz)

    I think I’ve found what is going wrong:
    when a subscriber want to verify and pushes the button in the email, a new tab is opened in the browser. This new tab has the message “set up 2-FA” (?!), but the old tab (which I checked this time), is now asking to complete the two-factor. So, if the subscriber does that, the 2FA is set …
    This is very confusing for a subscriber who wants to set 2FA … I don’t think it’s meant to work this way …

    • This reply was modified 8 months ago by Jakobuz.
    • This reply was modified 8 months ago by Jakobuz.
    Plugin Support Ben Meredith

    (@benmeredithgmailcom)

    Hey @jakobuz

    Thanks so much for sticking with this and giving me steps to replicate this problem. I’ve just been able to do that, and have escalated it to our team to have a look, for sure.

    You’re exactly right that this is not the way it should work. I’ll mark this post so that in the event we fix this issue, we can reach back out here to let you know things are resolved. I’m marking this as “resolved” here, but that means “escalated to the team” for sure.

    Thanks again for the help here making our product better.

    rrvoigt

    (@rrvoigt)

    Hi, testing the Solid Security plugin to see if it works before we move to the pro version. We noticed 2 issue.

    1. When clicking pn backup we do get an email, but without the attachment? Is this normal in the free version and do we need the proto get the backup?
    2. Important for us to take the next step: In tests when we enable the 2FA for selected staff, then this code box does not appear in the front section under our theme site login (it does appear in the back-end). This is problematic, because that user that has the 2FA enabled can’t login in the front of the site anymore. Our theme support (https://getvoxel.io/) wrote this. Is there a solution you can provide?

      This feature is not compatible with the authentication form provided by Voxel. If the plugin provides its own authentication form which can be placed in the site frontend (as a widget or short code maybe), then you can replace the Voxel form with that one. You could also use both in the frontend, but the Voxel one would only work for non-2FA accounts.

      Regards,
    nlpro

    (@nlpro)

    Hi @rrvoigt,

    • 1. No, most likely you will hit the same problem in the Pro version. The feature is known to function properly. So this is most likely a specific issue in your env. If currently enabled, try and disable the Compress Backup Files setting. If that doesn’t help please open a new topic.
    • 2. As per the forum guidelines FAQ it’s probably best to open a new topic for this issue.

    +++ To prevent any confusion, I’m not SolidWP +++

    Thread Starter Jakobuz

    (@jakobuz)

    @Ben Meredith: thank you very much!

    rrvoigt

    (@rrvoigt)

    @nlpro Thanks! Noted will open a new topic for the second issue.

    Regards,

Viewing 8 replies - 1 through 8 (of 8 total)
  • The topic ‘2FA via email’ is closed to new replies.