Project

General

Profile

Actions
Copy link

Feature #31920

closed

Require 2FA only for certain user groups

Added by Jens Krämer almost 6 years ago. Updated about 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Marius BĂLTEANU
Category:
Accounts / authentication
Target version:
5.0.0
Start date:
Due date:
% Done:

0%

Estimated time:
Resolution:

Description

This patch, which should be applied on top of those from #1237, adds a flag to groups so 2FA can be globally optional, but required for certain groups of users.

Files

Download all files
0005-per-group-2fa-requirement.patch (6.93 KB) 0005-per-group-2fa-requirement.patch Jens Krämer, 2019-08-17 16:07
0001-Rebase-patch-from-23653.patch (7.36 KB) 0001-Rebase-patch-from-23653.patch Marius BĂLTEANU, 2021-06-22 22:56

Related issues

Related to Redmine - Feature #35086: Please consider changing the way how 2FA is set upClosed

Actions
Related to Redmine - Feature #35439: Option to require 2FA only for users with administration rightsClosedMarius BĂLTEANU

Actions
Blocked by Redmine - Feature #1237: Add support for two-factor authenticationClosedGo MAEDA2008-05-14

Actions
Actions
Copy link
 #1

Updated by Go MAEDA almost 6 years ago

  • Blocked by Feature #1237: Add support for two-factor authentication added
Actions
Copy link
 #2

Updated by Marius BĂLTEANU almost 5 years ago

  • File 0001-Rebase-patch-from-23653.patch added
  • Subject changed from require 2FA only for certain user groups to Require 2FA only for certain user groups
  • Target version set to 4.2.0

I have rebased this patch in order to deliver this feature together with #1237. All tests pass after I've fixed the rubocop warnings.

Actions
Copy link
 #3

Updated by Marius BĂLTEANU over 4 years ago

  • Assignee set to Jean-Philippe Lang
  • Target version changed from 4.2.0 to 5.0.0
Actions
Copy link
 #4

Updated by Marius BĂLTEANU about 4 years ago

  • Related to Feature #35086: Please consider changing the way how 2FA is set up added
Actions
Copy link
 #5

Updated by Marius BĂLTEANU about 4 years ago

  • Assignee changed from Jean-Philippe Lang to Marius BĂLTEANU
Actions
Copy link
 #6

Updated by Marius BĂLTEANU about 4 years ago

  • File deleted (0001-Rebase-patch-from-23653.patch)
Actions
Copy link
 #7

Updated by Marius BĂLTEANU about 4 years ago

I've updated the patch for the current trunk and I made two changes:
1. Remove the empty setup do end from test/integration/twofa_test.rb
2. Added a check in app/view/groups/_form.html.erb in order to not diplay the "Require two factor authentication" field for builtin groups (Anonymous and Non Member) because the option won't make any sense for those groups.

Jens Priesen Krämer, please take a look over my changes, I would like to commit this as soon as possible if the changes look good to you.

Actions
Copy link
 #8

Updated by Jens Krämer about 4 years ago

looks good to me!

Actions
Copy link
 #9

Updated by Marius BĂLTEANU about 4 years ago

  • Status changed from New to Resolved

Committed the patch. Thank you for your contribution.

Actions
Copy link
 #10

Updated by Marius BĂLTEANU about 4 years ago

  • Tracker changed from Patch to Feature
  • Status changed from Resolved to Closed
Actions
Copy link
 #11

Updated by Holger Just over 3 years ago

  • Related to Feature #35439: Option to require 2FA only for users with administration rights added
Actions
Copy link

Also available in: Atom PDF