Doesn't work - takes straight to logout page without asking for code

[DavidAnderson684]

I set this up, and got the secret key, and verified the codes were being successfully generated (two different apps).

I then opened a private window in Chrome, to test logging in to RoundCube.

I am using the http_authentication plugin - https://github.com/roundcube/roundcubemail/tree/master/plugins/http_authentication . After providing HTTP authentication, RoundCube then immediately takes me to the logout page, with the message that I have been logged out. I am not asked for my TFA code.

After disabling the two-factor plugin, I am able to log in again.

[alexandregz]

Hi David:

what's your config for IMAP? Can you put here?

I usually use:

$config['default_host'] = '%s';

without problems.

[DavidAnderson684]

Mine has:

$config['default_host'] = '127.0.0.1';

According to the config file, %s means "domain name after the '@' from e-mail address provided at login screen". That setting would be invalid for us, because the server does virtual hosting for many domains.

How does that setting get involved anyway? I can't work out how it can be related to TFA.

[alexandregz]

I asked you just because with my config and http_auth plugin my RC installation can't connect with IMAP server and retrieves mail.

Anyway, I'm watching the issue, thx!