keycloak-2fa-email-authenticator
keycloak-2fa-email-authenticator copied to clipboard
Sometimes the OTP is not required (skipped)
Hi,
I've deployed the extension to Keycloak 24.0.1, it work fine excpet for a scenario where I'm able to authenticate a user without having to provide an OTP. The OTP form is skipped. Here's the scenario (under Chrome):
- Launch myapp url, I'm redirected to keycloak login form
- Fill login and password then submit, I get the OTP code form and also receive an email
- Open another tab, lauch my app url, I'm redirected to keycloak login form
- Fille login and password then submit, I'm succesfully authenticated to my app without going through the OTP form :(
Any clue pls
Best regards