twofactor_totp
twofactor_totp copied to clipboard
nextcloud
🔑 Second factor TOTP (RFC 6238) provider for Nextcloud
### Steps to reproduce 1. install docker nextcloud 18.0.3-apache 2. install TOTP from application page 3. login with admin user 4. scan qrcode with google authenticator 5. verify code ###...
When using TOTP the user password should -always- go to the TOTP app, even if wrong. It should not say "wrong password" prior to the TOTP app for security reasons....
Steps to reproduce Upgrade to 11.0.1 Log in after session timout Expected behaviour After entering code I should be able to login Actual behaviour TOTP (Google Authenticator) Swedish error message...
Do not know wheter this is an issue with this app, the server or the notifications-2FA. 🤔 @ChristophWurst 
So people know how to contribute, and set it up. :)
When the App is limited to specific groups, the security settings page of all users still shows the option: TOTP second-factor auth [ ] Enable TOTP Checking the checkbox on...
This bug is unexpected to me so maybe there is another explanation. The situation: I have a nextcloud server in Europe My smartphone (and I) are in Australia The problem:...
I would like to request an addition to the activity toggles in the personal settings for the suppression of the "You successfully logged in using two-factor authentication (TOTP (Authenticator app))"....
I suggest that the app logs failed attempts much like the nextcloud core logs failed logins. That would allow to handle these security issues with external tools like fail2ban.
2FA is "A Good Thing™". It can and will impact other clients, though, such as the desktop app and caldav/carddav clients. What is the suggested way to deal with this?...
