Feature #34070

Allow setting a grace period when forcing 2FA

Added by Marius BALTEANU about 1 year ago. Updated 4 months ago.

Status:NewStart date:
Priority:NormalDue date:
Assignee:Marius BALTEANU% Done:

0%

Category:Accounts / authentication
Target version:-
Resolution:

Description

On top of #31920 and #35439 which will allow to enable 2FA for certain groups or for administrators, we should add an option in admin to configure a grace period until the 2FA enforcement applies to all users.

In the grace period, the user should be redirected to the 2FA activation page after each successful login and informed about the enforcement, but with the option to skip the activation until enforcement date.

From my point of view, the simplest way is to add a new setting "Enforcement starting from" where the admin can choose the date.

Also, for new registered users, a similar grace period should be configurable, but in number of days.

Any feedback is welcome.

@Plan.io team, I have added you as watchers because the current implementation was provided by you and your feedback is important on all those issues related to 2FA.


Related issues

Related to Redmine - Feature #1237: Add support for two-factor authentication Closed 2008-05-14
Related to Redmine - Feature #35086: Please consider changing the way how 2FA is set up Closed

History

#1 Updated by Marius BALTEANU 6 months ago

  • Related to Feature #1237: Add support for two-factor authentication added

#2 Updated by Marius BALTEANU 6 months ago

  • Related to Feature #35086: Please consider changing the way how 2FA is set up added

#3 Updated by Marius BALTEANU 4 months ago

  • Description updated (diff)

Also available in: Atom PDF