• Bart Kuijper

    (@spartelfant)


    I considers this plugin to be misleading in both its name and its description.

    It’s advertised on wordpress.org under the name ‘Google Authenticator – WordPress Two Factor Authentication (2FA)‘, but after installation it calls itself ‘miniOrange 2 Factor Authentication‘. The latter conforms with the plugin slug, so I suspect this plugin was originally uploaded under that name, then was changed presumably in order to lure in more users.

    An interesting point to note here is that with the plugin’s current title (which starts with the brand Google) it most likely would NOT pass admission guidelines for hosting on wordpress.org. Source: Plugins must respect trademarks, copyrights, and project names.

    As for the plugin’s description, the use of the term ‘STANDARD PLUGIN FEATURES’ to refer to paid features is in my opinion a poor choice of words. Worse yet, ‘FREE PLUGIN FEATURES’ promises the availibility of free 2FA for 1 user with a Google Authenticator, but fails to mention that you are required to register an account with miniorange in order to make use of this functionality.

    But there is no technical requirement for this. A plugin can be entirely self-contained and support the Google Authenticator (as well as a variety of other authenticator apps based on the same publicly available algorithm). So the requirement of registering an account is imposed upon the user by the makers of this plugin and is in my view yet another attempt to generate revenue.

    In summation: misleading title, misleading description and no functionality whatsoever unless you are willing to register an account with the plugin’s makers. This kind of practices will get any plugin or theme a 1-star review in my book.

  • You must be logged in to reply to this review.