Latest package as optional sso support. You have to reinstall 2FAuth and select it at installation time.

I think I could reproduce this . Sometimes, if you click login with OpenID it fails. But if you click again, it logs in.

This is especially strange since you mentioned that other apps do work, so if you run that curl command from within a webterminal into that other app, it succeeds?

Just in case if this is a hairpin issue maybe, checkout https://docs.cloudron.io/troubleshooting/#hairpin-nat

I have moved the session files out of the data directory now. Maybe we should move to redis even later.

@fbartels thanks for the clarification 👍

@LoudLemur said in 2FAuth - is a mystery...:

Which Cloudron supported application could make use of 2Fauth?

Any that support setting up 2FA, e.g. GitLab, probably loads of others.

But it's not really the apps making use of it, it you using it to generate your 2FA codes to login to those apps.