This commit is contained in:
@@ -197,7 +197,7 @@ todo: 2fa is going to be an absolute must have pretty soon, look into what's inv
|
||||
User settings has a SECURITY section where control 2fa stuff
|
||||
user chooses 2fa button to setup, a dialog pops up sends a request to server at which point a secret key for 2fa is generated and stored in the User account
|
||||
and gets back the secret to display in a qr code on screen to searching
|
||||
/auth/setup-hotp
|
||||
/auth/setup-totp
|
||||
user is redirected to a client form with the qr code displayed for teh secret
|
||||
User gets QR code then displayed to sign up with auth software
|
||||
User has to enter a valid code to save or enable 2fa fully otherwise it's not enabled if they cancel out
|
||||
|
||||
Reference in New Issue
Block a user