2FAuth - Package Updates
Pinned
2FAuth
-
[1.0.0]
- Update 2FAuth to 5.2.0
- Full changelog
- Update base image to 5.0.0
- When installed, 2FAuth now offers shortcuts to common actions.
- User authentication logs (See user management pages in the admin area).
- Two user preferences to control the notifications sent when authentication events occur.
- A user preference to set the timezone applied to dates and times displayed in the app.
-
[1.2.1]
- Add optionalSso option
-
[1.3.0]
- Update 2FAuth to 5.3.0
- Full changelog
- The /up endpoint for health checks (#271).
- A user preference to close the on-screen OTP after a predefined delay
- A user preference to automatically register a 2FA account immediately after a QR code scan. When enabled, there is no need to click the Save button anymore to save the account to the database.
- An admin setting to make SSO the only authentication method available (does not apply to admins). (#368).
- The ability to assign a 2FA account to a specific group directly from the advanced form (#372).
- A new Auth tab in the admin panel to gather settings related to authentication
-
[1.3.1]
- Update 2FAuth to 5.3.1
- Full changelog
PROXY_HEADER_FOR_IP
not working as intended- Base table or view not found: 1146 Table '2fauth.jobs' doesn't exist
- Cannot set
CACHE_DRIVER
andSESSION_DRIVER
to database
-
[1.3.2]
- Update 2FAuth to 5.3.2
- Full changelog
- Error asking me to log out when using multiple devices, pressing back logs me in anyway
-
[1.4.0]
- Update 2FAuth to 5.4.0
- Full Changelog
- The links in the footer (Settings, [Admin,] Sign out) have been replaced by the email address of the logged in user. Clicking on this email shows a navigation menu containing the links that were previously visible in the footer. The former display is still available if you don't like the new one, just uncheck the new Show email in footer user option in Settings. (#404)
- Administrators can now configure 2FAuth to register 2FA icons in the database (see the new Store icons to database setting in the admin panel). When enabled, existing icons in the local file system are automatically registered in the database. These files are retained and then used for caching purposes only. 2FAuth will automatically re-create cache files if they are missing, so you only have to consider the database when backing up your instance. When disabled, 2FAuth will check that all registered icons in the database have a corresponding local file before flushing out the db icons table. (#364).
- The ability to export 2FA accounts as a list of otpauth URIs (#386).
- Part of the content of some pages (such as the error page) could be hidden by the footer on small screens.
- New
otpauth
query parameter for the GET operation of path/api/v1/twofaccounts/export
to force data export as otpauth URIs instead of the 2FAuth json format.
-
[1.4.1]
- Update 2FAuth to 5.4.2
- Full Changelog
- CSP has been turned off (for now) since it breaks the app under Google Chrome. (#417)
- Fix XSS & SSRF vulnerabilities (thx to the XBOW team).
- Content Security Policy is now available and enable by default. CSP helps to prevent or minimize the risk of certain types of security threats.\