Popis

This plugin adds support for WebAuthn into the Two Factor plugin.

Because the U2F API is deprecated and will be removed in February 2022, the plugin enables seamless support for the previously registered U2F security keys so that the users don’t have to re-register their keys and still be able to log in.

Notes:

please use GitHub issues to report bugs;
the full source code with all development files is available on GitHub.

Snímky obrazovky

User profile settings showing the registered security keys.
Plugin settings page.

Nejčastější dotazy

Be the first to ask.

Recenze

Andrew Wilder 14. 2. 2022

Thank you so much for this plugin!! In February 2022 Chrome changed things so hardware security keys would no longer work with the "Two Factor" plugin. Installing this add-on gets it working again. I had to change the "User Verification Requirement" to "Discouraged" in order to use my existing Yubikey (without re-adding it). Otherwise, it asked for a PIN but then wouldn't recognize my key. Hopefully it can get merged directly into the Two Factor plugin soon? 😁🙏

lbdee 10. 2. 2022

So close to proverbial midnight for the Chrome browser 2-factor security mandate, I'm thankful for the plugin, and appreciate the effort that went into its development. Such an elegant solution to the issue -- thank you again!

gahanzwart 28. 1. 2022

Consider it an add-on for the two factor plugin that lacks webauthn. Works immediatly with the assigned yubi keys registered in two factor. Thank you for all who contributed!

Přečtěte si všechny 3 recenze

Autoři

WebAuthn Provider for Two Factor je otevřený software. Následující lidé přispěli k vývoji tohoto pluginu.

Volodymyr Kolesnykov

Plugin „WebAuthn Provider for Two Factor“ byl přeložen do 1 jazyku. Děkujeme všem překladatelům za jejich pomoc.

Přeložte “WebAuthn Provider for Two Factor” do svého jazyka.

Zajímá vás vývoj?

Prohledejte kód, podívejte se do SVN repozitáře, nebo se přihlaste k odběru protokolu vývoje pomocí RSS.

Přehled změn

1.0.10

Add zh-tw translations (props Chun-Chih Cheng, Alex Lion)
GH-215, GH-33: Fix „Unable to save the key to the database“ error for long public keys
Update development dependencies

1.0.9

Update madwizard/webauthn to 0.8.0
Update development dependencies
Add debug mode (activated with define( 'DEBUG_TFPWA', true );)

1.0.8

Security: Update guzzlehttp/guzzle to 7.4.5 (fix CVE-2022-31090 and CVE-2022-31091)
Do not load the plugin while WordPress is being installed

1.0.7.1

=
* Fix deployment issue. It’s time to automate the process

1.0.7

GH-130: fix Network Installation issue
Update development dependencies
Add security-related workflows to CI
Improve tests

1.0.6.1

=
* Fix deployment issue

1.0.6

GH-93: remove unnecessary required attribute from webauthn_key_name
Security: Update guzzlehttp/guzzle to 7.4.4 (fix CVE-2022-31042 and CVE-2022-31043)
Update development dependencies

1.0.5

Synchronize plugin version across all files

1.0.4

Update translations
GH-93: add an option to turn off the old U2F provider
Update dependencies
Add more E2E tests

1.0.3

GH-33: increase length of credential_id column to solve issues with Chrome on Mac
GH-38: fix bugs preventing plugin uninstallation
Make Settings::offsetGet() compatible with PHP 8.1

1.0.2

Added E2E tests
UI fixes

1.0.1

First public release.

Two Factor works with hardware keys again!

A Life Saver!

Excellent ad in for two factor plugin with webauthn