admin icon indicating copy to clipboard operation
admin copied to clipboard
verified publisher icon dotkernel

[RFC]: Implement MFA

Open arhimede opened this issue 2 months ago • 3 comments

RFC

Q A
Proposed Version(s) 7.1.0
BC Break? Yes

Goal

Implement MFA for admins based on routes

  1. MFA for main login, which can be turned on or off at system level
  2. MFA again to certain rutes

Background

Security: as MFA can be in this case

  • apps like google authenticator, microsoft authenticator
  • SMS ? maybe
  • passkey ?

arhimede avatar Dec 18 '25 10:12 arhimede

https://github.com/hosseinhezami/totp-authenticator/blob/master/src/Authenticator.php

https://medium.com/@Edgaras0x4E/implementing-totp-based-multi-factor-authentication-in-symfony-7-e186df051dc8

arhimede avatar Dec 19 '25 10:12 arhimede

https://datatracker.ietf.org/doc/html/rfc6238

arhimede avatar Dec 19 '25 10:12 arhimede

system wide:

admin enforced, optional user enforced, optional

individual IF system wide = optional

admin: optional user: optional

arhimede avatar Jan 05 '26 10:01 arhimede

add this link to documentation , and readme.md https://datatracker.ietf.org/doc/html/rfc6238

arhimede avatar Jan 07 '26 10:01 arhimede