to

Lemmy.world SupportEnglish • 11 months ago

2FA Should Be Disabled As It Doesn't Work

7

2FA Should Be Disabled As It Doesn't Work

to

Lemmy.world SupportEnglish • 11 months ago

The 2FA feature does not work, at least on this instance. I haven’t tried it on other instances.

Enabling the 2FA option and refreshing the page generates a OTPAUTH link to add the TOTP code to an authenticator app of your choosing, which is fine. The problem is that the TOTP codes that the secret generates are not valid, and a user cannot login using the 2FA TOTP codes that are generated.

I have confirmed this on several different devices and authenticators.

Admins… it might be a good idea to disable this feature until it’s working properly to avoid people getting locked out of their accounts because they can never provide a valid TOTP code.

Chat

@BettyWhiteInHD
link
English
2•
edit-2
10 months ago
deleted by creator
- @C4d
  link
  English
  2•11 months ago
  The uh… what?
  - @SheeEttin
    link
    English
    3•11 months ago
    The app icon looks like a butthole to them, I guess.

Lemmy.world Support

[email protected]

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

Lemmy.world Support

Welcome to the official Lemmy.world Support community! Post your issues or questions about Lemmy.world here.

This community is for issues related to the Lemmy World instance only. For Lemmy software requests or bug reports, please go to the Lemmy github page.

This community is subject to the rules defined here for lemmy.world.

To open a support ticket

41 users / day
179 users / week
561 users / month
1.97K users / 6 months
3.13K subscribers
845 Posts
6.1K Comments
Modlog