Google Authenticator – WordPress Two Factor Authentication (2FA) -

Version Description

Google Authenticator-Two Factor Authentication (2FA) : Two Factor On-premise FAQ update.

Release Info

Developer	cyberlord92
Plugin	Google Authenticator – WordPress Two Factor Authentication (2FA)
Version	5.3.26
Comparing to
See all releases

Code changes from version 5.3.25 to 5.3.26

Files changed (9) hide show

controllers/twofa/mo2fa_common_login.php +8 -5
handler/twofa/gaonprem.php +1 -1
handler/twofa/two_fa_settings.php +2 -2
helper/constants.php +2 -0
helper/pluginUtility.php +7 -0
miniorange_2_factor_settings.php +2 -2
readme.txt +7 -1
views/twofa/setup/setup_google_authenticator.php +1 -1
views/twofa/setup/setup_google_authenticator_onpremise.php +1 -1

controllers/twofa/mo2fa_common_login.php CHANGED Viewed

	@@ -248,7 +248,8 @@ function mo2f_get_forgotphone_form( $login_status, $login_message, $redirect_to,
248	<?php }
249
250	function mo2f_get_kba_authentication_prompt( $login_message, $redirect_to, $session_id_encrypt , $cookievalue) {
251	-

252	$mo2f_login_option = get_option( 'mo2f_login_option' );
253	$mo2f_remember_device_enabled = get_option( 'mo2f_remember_device' );
254	?>
	@@ -319,7 +320,7 @@ function mo2f_get_kba_authentication_prompt( $login_message, $redirect_to, $sess
319	<br>
320	</div>
321	<div style="padding:10px;">
322	- <p><a href="~~https://faq.miniorange.com/knowledgebase/gain-access-to-website-if-locked-out/~~" target="_blank" style="color:#ca2963;font-weight:bold;">I'm locked out & unable to login.</a></p>
323	</div>
324
325	<?php mo2f_customize_logo() ?>
	@@ -347,6 +348,8 @@ function mo2f_get_kba_authentication_prompt( $login_message, $redirect_to, $sess
347	}
348
349	function mo2f_get_push_notification_oobemail_prompt( $id, $login_status, $login_message, $redirect_to, $session_id_encrypt, $cookievalue ) {


350	global $Mo2fdbQueries,$txid;
351	$mo2f_enable_forgotphone = get_option( 'mo2f_enable_forgotphone' );
352	$mo2f_KBA_config_status = $Mo2fdbQueries->get_user_detail( 'mo2f_SecurityQuestions_config_status', $id );
	@@ -418,7 +421,7 @@ function mo2f_get_push_notification_oobemail_prompt( $id, $login_status, $login_
418	</span>
419	<center>
420	<div style="padding:10px;">
421	- <p><a href="~~https://faq.miniorange.com/knowledgebase/gain-access-to-website-if-locked-out/~~" target="_blank" style="color:#ca2963;font-weight:bold;">I'm locked out & unable to login.</a></p>
422	</div>
423	</center>
424	</div>
	@@ -607,7 +610,7 @@ function mo2f_get_qrcode_authentication_prompt( $login_status, $login_message, $
607	</center>
608	</span>
609	<div style="padding:10px;">
610	- <p><a href="~~https://faq.miniorange.com/knowledgebase/gain-access-to-website-if-locked-out/~~" target="_blank" style="color:#ca2963;font-weight:bold;">I'm locked out & unable to login.</a></p>
611	</div>
612	</div>
613	<?php mo2f_customize_logo() ?>
	@@ -763,7 +766,7 @@ function mo2f_get_otp_authentication_prompt( $login_status, $login_message, $red
763	<?php } ?>
764	<?php } ?>
765	<div style="padding:10px;">
766	- <p><a href="~~https://faq.miniorange.com/knowledgebase/gain-access-to-website-if-locked-out/~~" target="_blank" style="color:#ca2963;font-weight:bold;">I'm locked out & unable to login.</a></p>
767	</div>
768	</div>
769	</div>


248	<?php }
249
250	function mo2f_get_kba_authentication_prompt( $login_message, $redirect_to, $session_id_encrypt , $cookievalue) {
251	+ $mo_wpns_config = new MoWpnsHandler();
252	+
253	$mo2f_login_option = get_option( 'mo2f_login_option' );
254	$mo2f_remember_device_enabled = get_option( 'mo2f_remember_device' );
255	?>

320	<br>
321	</div>
322	<div style="padding:10px;">
323	+ <p><a href="<?php echo $mo_wpns_config->lockedOutlink();?>" target="_blank" style="color:#ca2963;font-weight:bold;">I'm locked out & unable to login.</a></p>
324	</div>
325
326	<?php mo2f_customize_logo() ?>

348	}
349
350	function mo2f_get_push_notification_oobemail_prompt( $id, $login_status, $login_message, $redirect_to, $session_id_encrypt, $cookievalue ) {
351	+ $mo_wpns_config = new MoWpnsHandler();
352	+
353	global $Mo2fdbQueries,$txid;
354	$mo2f_enable_forgotphone = get_option( 'mo2f_enable_forgotphone' );
355	$mo2f_KBA_config_status = $Mo2fdbQueries->get_user_detail( 'mo2f_SecurityQuestions_config_status', $id );

421	</span>
422	<center>
423	<div style="padding:10px;">
424	+ <p><a href="<?php echo $mo_wpns_config->lockedOutlink();?>" target="_blank" style="color:#ca2963;font-weight:bold;">I'm locked out & unable to login.</a></p>
425	</div>
426	</center>
427	</div>

610	</center>
611	</span>
612	<div style="padding:10px;">
613	+ <p><a href="<?php echo $mo_wpns_config->lockedOutlink();?>" target="_blank" style="color:#ca2963;font-weight:bold;">I'm locked out & unable to login.</a></p>
614	</div>
615	</div>
616	<?php mo2f_customize_logo() ?>

766	<?php } ?>
767	<?php } ?>
768	<div style="padding:10px;">
769	+ <p><a href="<?php echo $mo_wpns_config->lockedOutlink();?>" target="_blank" style="color:#ca2963;font-weight:bold;">I'm locked out & unable to login.</a></p>
770	</div>
771	</div>
772	</div>

handler/twofa/gaonprem.php CHANGED Viewed

	@@ -17,7 +17,7 @@ class Google_auth_onpremise{
17	if(!isset($_SESSION['secret_ga'])){
18	$_SESSION['secret_ga'] = $this->createSecret();
19	}
20	- $issuer=get_option('mo2f_google_appname', '~~miniOrangeAuth~~');
21	$email=$user->user_email;
22
23	$otpcode=$this->getCode($_SESSION['secret_ga']);


17	if(!isset($_SESSION['secret_ga'])){
18	$_SESSION['secret_ga'] = $this->createSecret();
19	}
20	+ $issuer=get_option('mo2f_google_appname', 'miniOrangeAu');
21	$email=$user->user_email;
22
23	$otpcode=$this->getCode($_SESSION['secret_ga']);

handler/twofa/two_fa_settings.php CHANGED Viewed

	@@ -1556,7 +1556,7 @@ class Miniorange_Authentication {
1556	return $error;
1557	} else {
1558
1559	- update_option('mo2f_google_appname',((isset($_POST['mo2f_google_auth_appname']) && $_POST['mo2f_google_auth_appname']!='') ? $_POST['mo2f_google_auth_appname'] : '~~miniOrangeAuth~~'));
1560	}
1561
1562	}else if ( isset( $_POST['option'] ) && $_POST['option'] == 'mo2f_configure_google_authenticator_validate' ) {
	@@ -2533,7 +2533,7 @@ class Miniorange_Authentication {
2533	$email = $Mo2fdbQueries->get_user_detail( 'mo2f_user_email', $user->ID );
2534	$google_auth = new Miniorange_Rba_Attributes();
2535	$gauth_name= get_option('mo2f_google_appname');
2536	- $gauth_name = $gauth_name ? $gauth_name : '~~miniOrangeAuth~~';
2537	$google_response = json_decode( $google_auth->mo2f_google_auth_service( $email,$gauth_name ), true );
2538	if ( json_last_error() == JSON_ERROR_NONE ) {
2539	if ( $google_response['status'] == 'SUCCESS' ) {


1556	return $error;
1557	} else {
1558
1559	+ update_option('mo2f_google_appname',((isset($_POST['mo2f_google_auth_appname']) && $_POST['mo2f_google_auth_appname']!='') ? $_POST['mo2f_google_auth_appname'] : 'miniOrangeAu'));
1560	}
1561
1562	}else if ( isset( $_POST['option'] ) && $_POST['option'] == 'mo2f_configure_google_authenticator_validate' ) {

2533	$email = $Mo2fdbQueries->get_user_detail( 'mo2f_user_email', $user->ID );
2534	$google_auth = new Miniorange_Rba_Attributes();
2535	$gauth_name= get_option('mo2f_google_appname');
2536	+ $gauth_name = $gauth_name ? $gauth_name : 'miniOrangeAu';
2537	$google_response = json_decode( $google_auth->mo2f_google_auth_service( $email,$gauth_name ), true );
2538	if ( json_last_error() == JSON_ERROR_NONE ) {
2539	if ( $google_response['status'] == 'SUCCESS' ) {

helper/constants.php CHANGED Viewed

	@@ -44,6 +44,8 @@
44	const THEMES = 'themes';
45	const WPFILES = 'wpfiles';
46	const DATABASE = 'db';


47
48	public static $repo_status_code = array(-96 => 'Maximum execution time exceeded while downloading files from repository. Please contact miniOrange.', -97 => '<i>Uploads Folder</i> permission denied', -98 => '2 Factor authentication plugin unable to reach wordpress repository files. Please contact miniOrange.', -99 => 'Unable to download Wordpress, plugins and themes from Repository', -100 => 'Unable to unzip the Wordpress, plugins and themes');
49


44	const THEMES = 'themes';
45	const WPFILES = 'wpfiles';
46	const DATABASE = 'db';
47	+ const CloudLockedOut ='https://faq.miniorange.com/knowledgebase/how-to-gain-access-to-my-website-if-i-get-locked-out/';
48	+ const OnPremiseLockedOut ='https://faq.miniorange.com/knowledgebase/i-am-locked-cant-access-my-account-what-do-i-do/';
49
50	public static $repo_status_code = array(-96 => 'Maximum execution time exceeded while downloading files from repository. Please contact miniOrange.', -97 => '<i>Uploads Folder</i> permission denied', -98 => '2 Factor authentication plugin unable to reach wordpress repository files. Please contact miniOrange.', -99 => 'Unable to download Wordpress, plugins and themes from Repository', -100 => 'Unable to unzip the Wordpress, plugins and themes');
51

helper/pluginUtility.php CHANGED Viewed

	@@ -483,6 +483,13 @@ class MoWpnsHandler
483	return false;
484	}
485







486
487	function is_referer_blocked()
488	{


483	return false;
484	}
485
486	+ function lockedOutlink(){
487	+ if(MO2F_IS_ONPREM){
488	+ return MoWpnsConstants::OnPremiseLockedOut;
489	+ }else{
490	+ return MoWpnsConstants::CloudLockedOut;
491	+ }
492	+ }
493
494	function is_referer_blocked()
495	{

miniorange_2_factor_settings.php CHANGED Viewed

	@@ -3,13 +3,13 @@
3	* Plugin Name: miniOrange 2 Factor Authentication
4	* Plugin URI: https://miniorange.com
5	* Description: This plugin provides various two-factor authentication methods as an additional layer of security after the default wordpress login. We Support Google/Authy/LastPass Authenticator, QR Code, Push Notification, Soft Token and Security Questions(KBA) for 1 User in the free version of the plugin.
6	- * Version: 5.3.25
7	* Author: miniOrange
8	* Author URI: https://miniorange.com
9	* License: GPL2
10	*/
11	define( 'MO_HOST_NAME', 'https://login.xecurify.com' );
12	- define( 'MO2F_VERSION', '5.3.25' );
13	define( 'MO2F_TEST_MODE', FALSE );
14	define( 'MO2F_IS_ONPREM', get_option('is_onprem'));
15	class Miniorange_twoFactor{


3	* Plugin Name: miniOrange 2 Factor Authentication
4	* Plugin URI: https://miniorange.com
5	* Description: This plugin provides various two-factor authentication methods as an additional layer of security after the default wordpress login. We Support Google/Authy/LastPass Authenticator, QR Code, Push Notification, Soft Token and Security Questions(KBA) for 1 User in the free version of the plugin.
6	+ * Version: 5.3.26
7	* Author: miniOrange
8	* Author URI: https://miniorange.com
9	* License: GPL2
10	*/
11	define( 'MO_HOST_NAME', 'https://login.xecurify.com' );
12	+ define( 'MO2F_VERSION', '5.3.26' );
13	define( 'MO2F_TEST_MODE', FALSE );
14	define( 'MO2F_IS_ONPREM', get_option('is_onprem'));
15	class Miniorange_twoFactor{

readme.txt CHANGED Viewed

	@@ -6,7 +6,7 @@ Donate link: https://miniorange.com/
6	Requires at least: 3.0.1
7	Tested up to: 5.4
8	Requires PHP: 5.3.0
9	- Stable tag: 5.3.25
10	License: GPLv2 or later
11	License URI: http://www.gnu.org/licenses/gpl-2.0.html
12
	@@ -272,6 +272,9 @@ miniOrange authentication service has 15+ authentication methods.One time passco
272
273	== Changelog ==
274



275	= 5.3.25 =
276	* Google Authenticator-Two Factor Authentication (2FA) : Two Factor On-premise support form.
277
	@@ -741,6 +744,9 @@ More descriptive setup messages and UI changes.
741
742	== Upgrade Notice ==
743



744	= 5.3.25 =
745	* Google Authenticator-Two Factor Authentication (2FA) : Two Factor On-premise support form.
746


6	Requires at least: 3.0.1
7	Tested up to: 5.4
8	Requires PHP: 5.3.0
9	+ Stable tag: 5.3.26
10	License: GPLv2 or later
11	License URI: http://www.gnu.org/licenses/gpl-2.0.html
12

272
273	== Changelog ==
274
275	+ = 5.3.26 =
276	+ * Google Authenticator-Two Factor Authentication (2FA) : Two Factor On-premise FAQ update.
277	+
278	= 5.3.25 =
279	* Google Authenticator-Two Factor Authentication (2FA) : Two Factor On-premise support form.
280

744
745	== Upgrade Notice ==
746
747	+ = 5.3.26 =
748	+ * Google Authenticator-Two Factor Authentication (2FA) : Two Factor On-premise FAQ update.
749	+
750	= 5.3.25 =
751	* Google Authenticator-Two Factor Authentication (2FA) : Two Factor On-premise support form.
752

views/twofa/setup/setup_google_authenticator.php CHANGED Viewed

	@@ -6,7 +6,7 @@ function mo2f_configure_google_authenticator( $user ) {
6	$ga_secret = isset( $_SESSION['mo2f_google_auth'] ) ? $mo2f_google_auth['ga_secret'] : null;
7	$h_size = 'h3';
8	$gauth_name= get_option('mo2f_google_appname');
9	- $gauth_name = $gauth_name ? $gauth_name : '~~miniOrangeAuth~~';
10	?>
11	<table>
12	<tr>


6	$ga_secret = isset( $_SESSION['mo2f_google_auth'] ) ? $mo2f_google_auth['ga_secret'] : null;
7	$h_size = 'h3';
8	$gauth_name= get_option('mo2f_google_appname');
9	+ $gauth_name = $gauth_name ? $gauth_name : 'miniOrangeAu';
10	?>
11	<table>
12	<tr>

views/twofa/setup/setup_google_authenticator_onpremise.php CHANGED Viewed

	@@ -3,7 +3,7 @@
3	function mo2f_configure_google_authenticator_onprem( $secret,$url,$otpcode ) {
4	$h_size = 'h3';
5	$gauth_name= get_option('mo2f_google_appname');
6	- $gauth_name = $gauth_name ? $gauth_name : '~~miniOrangeAuth~~';
7
8	?>
9	<table>


3	function mo2f_configure_google_authenticator_onprem( $secret,$url,$otpcode ) {
4	$h_size = 'h3';
5	$gauth_name= get_option('mo2f_google_appname');
6	+ $gauth_name = $gauth_name ? $gauth_name : 'miniOrangeAu';
7
8	?>
9	<table>

Google Authenticator – WordPress Two Factor Authentication (2FA) - Version 5.3.26

Version Description

Release Info

Code changes from version 5.3.25 to 5.3.26