Beschreibung

Nutze den Abschnitt „Zwei-Faktor-Optionen“ unter „Benutzer“ → „Dein Profil“, um einen oder mehrere Zwei-Faktor-Authentifizierungsanbieter für dein Konto zu aktivieren und zu konfigurieren:

E-Mail-Codes
Zeitbasierte Einmal-Passwörter (TOTP)
FIDO Universal 2. Faktor (U2F)
Backup-Codes
Dummy-Verfahren (nur zu Testzwecken)

Weitergehende Informationen finden sich in diesem Beitrag.

Actions und Filter

Nachfolgend findet sich hier eine Auflistung von Action- und Filter-Hooks, die das Plugin anbietet:

Der two_factor_providers-Filter hat Vorrang gegenüber anderen vorhandenen Zwei-Faktor-Authentifizierungs-Methoden wie E-Mail und zeitbasierten Einmal-Passwörtern. Array-Werte können PHP-Klassennamen der jeweiligen Zwei-Faktor-Methoden sein.
Der two_factor_enabled_providers_for_user-Filter überschreibt die Authentifizierungsmethoden, die für einen Benutzer aktiviert sind. Das erste Argument ist ein Array der Klassennamen erlaubter Authentifizierungsmethoden, während das zweite Argument die Nutzer-ID ist.
Die two_factor_user_authenticated-Aktion empfängt das eingeloggte WP_User-Objekt als erstes Argument, um den angemeldeten Benutzer direkt nach dem Authentifizierung-Workflow zu ermitteln.
Der two_factor_token_ttl-Filter überschreibt den Zeitraum, den ein per E-Mail versandter Token nach seiner Erstellung haben darf. Akzeptiert werden als erstes Argument die Zeit (in Sekunden) und die ID des WP_User Nutzers, der sich authentifiziert.

Screenshots

Zwei-Faktor-Optionen im Benutzerprofil.
U2F-Sicherheitsschlüssel-Abschnitt im Benutzerprofil.
Authentifizierung per E-Mail-Code während der WordPress-Anmeldung.

FAQ

How can I send feedback or get help with a bug?

The best place to report bugs, feature suggestions, or any other (non-security) feedback is at the Two Factor GitHub issues page. Before submitting a new issue, please search the existing issues to check if someone else has reported the same feedback.

Where can I report security bugs?

The plugin contributors and WordPress community take security bugs seriously. We appreciate your efforts to responsibly disclose your findings, and will make every effort to acknowledge your contributions.

To report a security issue, please visit the WordPress HackerOne program.

Rezensionen

Arslan Kalwar 24. Mai 2023

As a contributor to the Two-Factor WordPress Plugin, I'm excited to present my review of this exceptional security solution. This plugin operates flawlessly, delivering a streamlined and user-friendly interface for configuring two-factor authentication (2FA) with minimal effort. One of the aspects I'm particularly fond of is its commitment to focusing on a single function while excelling at it, providing users with a reliable and efficient solution. In this review, I will delve deeper into the plugin's impressive features and highlight its effectiveness in enhancing WordPress security. Impressive Simplicity: The Two-Factor WordPress Plugin truly shines in its simplicity. Configuring 2FA is a breeze, thanks to its straightforward and intuitive interface. Even users with minimal technical knowledge can easily set up the plugin without any hassle. By focusing on the core functionality of two-factor authentication, the plugin avoids overwhelming users with unnecessary features, ensuring a smooth and uncomplicated experience. User-Centric Design: The plugin's user-centric design is a testament to its effectiveness. It prioritizes the needs and preferences of users, providing them with a seamless and efficient 2FA setup process. Whether users opt for time-based one-time passwords (TOTP), QR code scanning, or other authentication methods, the plugin caters to their diverse requirements, enhancing security without compromising convenience. The straightforward configuration options empower users to strengthen their WordPress logins with just a few clicks. Contributor Involvement: As a proud contributor to the Two-Factor WordPress Plugin, I'm grateful for the opportunity to be part of a project that prioritizes user security. Collaborating with the dedicated development team has been an enriching experience, and I've witnessed firsthand their commitment to excellence and attention to detail. Contributing to this plugin has allowed me to play a role in providing users with a reliable and effective security solution for their WordPress websites. Conclusion: In conclusion, the Two-Factor WordPress Plugin stands out as a remarkable tool for enhancing WordPress security. Its flawless performance, coupled with a user-friendly interface, makes it a top choice for configuring two-factor authentication with ease. The plugin's simplicity is commendable, offering users a focused and streamlined solution without overwhelming them with unnecessary features. As a contributor to this exceptional project, I take great pride in recommending the Two-Factor WordPress Plugin to WordPress users who value simplicity, security, and reliability.

fahimmurshed 24. Mai 2023

This plugin functions flawlessly! It provides users with a straightforward and straightforward interface for configuring two-factor authentication (2FA), requiring minimal configuration, if any. What I appreciate most is that it focuses on doing one thing exceptionally well, as opposed to overwhelming users with a multiplicity of unrelated features.