Skip to content

/ two-factor

Latest release
  • 0.7.0
  • 736473e
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits
  • Compare
    Choose a tag to compare
    Search for a tag
Version 0.7.0
Latest release
  • 0.7.0
  • 736473e
  • Compare
    Choose a tag to compare
    Search for a tag
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits

@kasparsd kasparsd released this Aug 26, 2020

  • Fix: improve time-based one-time (TOTP) autofill when using password managers like 1Password, see #373. Props @omelhus.
  • Fix: allow spaces in email code input and strip them away before processing, see #379. Props @shay1383.
  • Fix: remove references to Google Authenticator app since there are a lot more TOTP authenticators these days, see #367. Props @r-a-y.
  • Fix: register FIDO U2F related scripts during the suggested action hooks to avoid PHP noticed, see #356 and #368. Props @cojennin.
  • Rename and deprecate action and filter names two-factor-user-options- and two-factor-totp-time-step-allowance that don't following the WP coding standards. Use two_factor_user_options_ and two_factor_totp_time_step_allowance now. See #363. Props @paulschreiber.
  • Update codebase to match the WordPress coding standards, see #340. Props @paulschreiber.
  • Add tooling to run PHPUnit tests locally during development, see #355. Props @kasparsd.
Assets 2
Pre-release
Version 0.7.0-rc.1
Pre-release

@kasparsd kasparsd released this Jun 16, 2020

  • Update codebase to match the WordPress coding standards, see #340. Props @paulschreiber.
  • Add tooling to run PHPUnit tests locally during development, see #355. Props @kasparsd.
Assets 2
  • 0.6.0
  • 529c973
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits
  • Compare
    Choose a tag to compare
    Search for a tag
Version 0.6.0
  • 0.6.0
  • 529c973
  • Compare
    Choose a tag to compare
    Search for a tag
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits

@kasparsd kasparsd released this May 6, 2020 · 27 commits to master since this release

  • Security fix: escape the U2F key value when doing the key lookup in database during login. Props @mjangda from WordPress VIP. See #351.

  • New feature: invalidate email tokens 15 minutes after they were generated. Use the two_factor_token_ttl filter to override this time-to-live interval. See #352.

  • Document some of the available filters.

Assets 2
  • 0.5.2
  • 9b6e838
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits
  • Compare
    Choose a tag to compare
    Search for a tag
Version 0.5.2
  • 0.5.2
  • 9b6e838
  • Compare
    Choose a tag to compare
    Search for a tag
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits

@kasparsd kasparsd released this Apr 30, 2020 · 30 commits to master since this release

  • Bugfix: saving standard user profile fields no longer resets the time-based-password key, see #341.
  • Bugfix: remove spaces around authentication codes before verifying them, see #339 (props @paulschreiber).
  • Bugfix: allow admins to configure FIDO U2F keys for other users, see #349.
  • Enable the "Dummy" authenticator method only when WP_DEBUG is set since we don't want regular users using it.
  • New: Add an two_factor_user_authenticated action when the user is logged-in after the second factor has been verified, see #324 (props @Kubitomakita).
  • New: Add two_factor_token_email_subject and two_factor_token_email_message filters to customize the email code subject and body, see #345 (props @christianc1).
  • Update the reference article URL in the readme files to account for domain change, see #332 (props @todeveni).
Assets 2
  • 0.5.1
  • 57faccc
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits
  • Compare
    Choose a tag to compare
    Search for a tag
Version 0.5.1
  • 0.5.1
  • 57faccc
  • Compare
    Choose a tag to compare
    Search for a tag
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits

@kasparsd kasparsd released this Feb 5, 2020 · 51 commits to master since this release

  • Security fix: invalidate the session token used for the first password-based authentication, props @aapost0l.
  • Typo fixes in code comments, props @akkspros.
Assets 2
  • 0.5.0
  • 8f89355
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits
  • Compare
    Choose a tag to compare
    Search for a tag
Version 0.5.0
  • 0.5.0
  • 8f89355
  • Compare
    Choose a tag to compare
    Search for a tag
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits

@kasparsd kasparsd released this Jan 11, 2020 · 54 commits to master since this release

  • Add a compatibility layer for Jetpack Secure Sign On to support longer session cookies, see #276. Props @pyronaur.
  • Fix spelling errors in code comments, see #318. Props @akkspros.
  • Add license file, #313. Props @axelsimon.
  • Bump the supported version of PHP to 5.6 to match the WordPress core.
Assets 2
  • 0.4.8
  • 03f1354
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits
  • Compare
    Choose a tag to compare
    Search for a tag
Version 0.4.8
  • 0.4.8
  • 03f1354
  • Compare
    Choose a tag to compare
    Search for a tag
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits

@kasparsd kasparsd released this Dec 26, 2019 · 61 commits to master since this release

  • Mark as tested with WordPress 5.3.
  • Add a screenshot with email code authentication prompt.
  • Update development tooling versions.
Assets 2
Version 0.4.7

@kasparsd kasparsd released this May 8, 2019 · 66 commits to master since this release

  • Introduce a two_factor_totp_title filter to allow TOTP title to be changed, see #294 (props @BrookeDot).
  • Mark as tested with WordPress 5.2.
Assets 2
  • 0.4.6
  • 63de5fc
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits
  • Compare
    Choose a tag to compare
    Search for a tag
Version 0.4.6
  • 0.4.6
  • 63de5fc
  • Compare
    Choose a tag to compare
    Search for a tag
  • Verified
    This commit was created on GitHub.com and signed with a verified signature using GitHub’s key.
    GPG key ID: 4AEE18F83AFDEB23 Learn about signing commits

@kasparsd kasparsd released this Apr 27, 2019 · 69 commits to master since this release

  • Add a unique ID for the two-factor options section, see #286 (props @joshbetz).
  • Add usage instructions and plugin screenshots, fixes #272.
Assets 2
Version 0.4.5

@kasparsd kasparsd released this Apr 22, 2019 · 73 commits to master since this release

  • Add the missing two-factor textdomains, see #281 (props @Sonic853).
  • Fix U2F feature detection in Firefox, see #285.
Assets 2
You can’t perform that action at this time.