Rate the improvement "Authorization with Google Authenticator"
Please evaluate the possibility of improving authorization using Google Authenticator
1. Purpose
Implement two-factor authentication (2FA) through Google Authenticator to improve user login security.
2. General requirements
Compatible with Google Authenticator app
Minimal impact on the current authorization process (login/password).
Ability to enable/disable 2FA for users
3. Functional requirements
3.1. Activating 2FA for a user
In the user profile settings (Login, password, access rights), add the option "Enable two-factor authentication via Google Authenticator".
When activated:
Generate a secret key (in Base32 format).
Create a QR code containing the URI for Google Authenticator (example: otpauth://totp/onebox:user@example.com?secret=SECRET_KEY&issuer=onebox).
Display QR code and secret key field in text form (for manual input).
The user must confirm the correctness of the binding by entering the current code from the application.
3.2. Authorization process
After successfully entering your login and password:
If the user has 2FA enabled, request a 6-digit code from Google Authenticator.
Check the code for validity (taking into account the time window of ±1 interval to compensate for time desynchronization).
3.3. Disabling 2FA
In the user profile settings (Login, password, access rights), add the option "disable two-factor authentication via Google Authenticator".
Thank you for your time.
Original question is available on version: ru
1. Purpose
Implement two-factor authentication (2FA) through Google Authenticator to improve user login security.
2. General requirements
Compatible with Google Authenticator app
Minimal impact on the current authorization process (login/password).
Ability to enable/disable 2FA for users
3. Functional requirements
3.1. Activating 2FA for a user
In the user profile settings (Login, password, access rights), add the option "Enable two-factor authentication via Google Authenticator".
When activated:
Generate a secret key (in Base32 format).
Create a QR code containing the URI for Google Authenticator (example: otpauth://totp/onebox:user@example.com?secret=SECRET_KEY&issuer=onebox).
Display QR code and secret key field in text form (for manual input).
The user must confirm the correctness of the binding by entering the current code from the application.
3.2. Authorization process
After successfully entering your login and password:
If the user has 2FA enabled, request a 6-digit code from Google Authenticator.
Check the code for validity (taking into account the time window of ±1 interval to compensate for time desynchronization).
3.3. Disabling 2FA
In the user profile settings (Login, password, access rights), add the option "disable two-factor authentication via Google Authenticator".
Thank you for your time.
Answers:
Good day. It is possible to make an additional check of the entrance by the described method, it will take about 25 hours. Issue an invoice?
вчера, 11:40
Original comment available on version: ru
lace
OneBox production wrote:
Good day. It is possible to make an additional login check using the described method, it will take about 25 hours. Issue an invoice?
Good day. This is the second revision on our list, we want to prepare a list of all the revisions we need and submit them to the CFO as one list.
Special thanks for the promptness of the assessments, we will definitely implement them as soon as we complete the list.
вчера, 13:28
Original comment available on version: ru
Please join the conversation. If you have something to say - please write a comment. You will need a mobile phone and an SMS code for identification to enter.
Log in and comment
Copyright © OneBox 2025
