admin
admin copied to clipboard
[RFC]: Implement MFA
RFC
| Q | A |
|---|---|
| Proposed Version(s) | 7.1.0 |
| BC Break? | Yes |
Goal
Implement MFA for admins based on routes
- MFA for main login, which can be turned on or off at system level
- MFA again to certain rutes
Background
Security: as MFA can be in this case
- apps like google authenticator, microsoft authenticator
- SMS ? maybe
- passkey ?
https://github.com/hosseinhezami/totp-authenticator/blob/master/src/Authenticator.php
https://medium.com/@Edgaras0x4E/implementing-totp-based-multi-factor-authentication-in-symfony-7-e186df051dc8
https://datatracker.ietf.org/doc/html/rfc6238
system wide:
admin enforced, optional user enforced, optional
individual IF system wide = optional
admin: optional user: optional
add this link to documentation , and readme.md https://datatracker.ietf.org/doc/html/rfc6238