Google Authenticator – WordPress Two Factor Authentication (2FA) -

Version Description

Google Authenticator - Two Factor Authentication (2FA, OTP) :
Christmas Offer UI.

Release Info

Developer	cyberlord92
Plugin	Google Authenticator – WordPress Two Factor Authentication (2FA)
Version	5.4.26
Comparing to
See all releases

Code changes from version 5.4.25 to 5.4.26

Files changed (10) hide show

controllers/main_controller.php +3 -1
controllers/navbar.php +2 -0
controllers/request_christmas_offer.php +48 -0
includes/css/style_settings.css +66 -0
includes/images/christmas_offer.PNG +0 -0
includes/images/santa-gif.gif +0 -0
miniorange_2_factor_settings.php +5 -3
readme.txt +34 -16
views/navbar.php +46 -5
views/request_christmas_offer.php +36 -0

controllers/main_controller.php CHANGED Viewed

	@@ -55,7 +55,9 @@
55	case 'mo_2fa_two_fa':
56	include $controller .'twofa'.DIRECTORY_SEPARATOR. 'two_fa.php'; break;
57	case 'mo_2fa_request_demo':
58	- include $controller . 'request_demo.php';


59	}
60	}
61


55	case 'mo_2fa_two_fa':
56	include $controller .'twofa'.DIRECTORY_SEPARATOR. 'two_fa.php'; break;
57	case 'mo_2fa_request_demo':
58	+ include $controller . 'request_demo.php'; break;
59	+ case 'mo_2fa_request_christmas_offer':
60	+ include $controller . 'request_christmas_offer.php';
61	}
62	}
63

controllers/navbar.php CHANGED Viewed

	@@ -68,6 +68,8 @@
68	$dashboard_url = add_query_arg(array('page' => 'mo_2fa_dashboard' ), $_SERVER['REQUEST_URI']);
69	$upgrade_url = add_query_arg(array('page' => 'mo_2fa_upgrade' ), $_SERVER['REQUEST_URI']);
70	$request_demo_url = add_query_arg(array('page' => 'mo_2fa_request_demo' ), $_SERVER['REQUEST_URI']);


71	//dynamic
72	$logo_url = plugin_dir_url(dirname(__FILE__)) . 'includes/images/miniorange_logo.png';
73	$login_with_usename_only_url = plugin_dir_url(dirname(__FILE__)) . 'includes/images/login-with-password-and-2fa.png';


68	$dashboard_url = add_query_arg(array('page' => 'mo_2fa_dashboard' ), $_SERVER['REQUEST_URI']);
69	$upgrade_url = add_query_arg(array('page' => 'mo_2fa_upgrade' ), $_SERVER['REQUEST_URI']);
70	$request_demo_url = add_query_arg(array('page' => 'mo_2fa_request_demo' ), $_SERVER['REQUEST_URI']);
71	+ $request_christmas_offer_url = add_query_arg(array('page' => 'mo_2fa_request_christmas_offer' ), $_SERVER['REQUEST_URI']);
72	+
73	//dynamic
74	$logo_url = plugin_dir_url(dirname(__FILE__)) . 'includes/images/miniorange_logo.png';
75	$login_with_usename_only_url = plugin_dir_url(dirname(__FILE__)) . 'includes/images/login-with-password-and-2fa.png';

controllers/request_christmas_offer.php ADDED Viewed

	@@ -0,0 +1,48 @@


1	+ <?php
2	+
3	+
4	+ if(current_user_can( 'manage_options' ) && isset($_POST['option']) )
5	+ {
6	+ switch($_POST['option'])
7	+ {
8	+ case "mo_2FA_christmas_request_form":
9	+ wpns_handle_christmas_request_form($_POST); break;
10	+ }
11	+ }
12	+
13	+ include $mo2f_dirName . 'views'.DIRECTORY_SEPARATOR.'request_christmas_offer.php';
14	+
15	+ function wpns_handle_christmas_request_form($post){
16	+ $nonce = isset($post['nonce'])?$post['nonce']:NULL;
17	+ $usecase = isset($post['mo_2FA_christmas_usecase'])? $post['mo_2FA_christmas_usecase']: NULL;
18	+ $email = isset($post['mo_2FA_christmas_email'])? $post['mo_2FA_christmas_email'] : NULL;
19	+ if ( ! wp_verify_nonce( $nonce, 'mo2f-Request-christmas' ) ){
20	+ return;
21	+ }
22	+ if(empty($usecase) \|\| empty($email) )
23	+ {
24	+ do_action('wpns_show_message',MoWpnsMessages::showMessage('DEMO_FORM_ERROR'),'SUCCESS');
25	+ return;
26	+ }
27	+ else{
28	+
29	+ $usecase = sanitize_text_field( $usecase );
30	+ $email = sanitize_text_field( $email );
31	+ $query = 'REQUEST FOR CHRISTMAS OFFERS';
32	+ $query .= ' =>';
33	+ $query .= ' : ';
34	+ $query .= $usecase;
35	+ $contact_us = new MocURL();
36	+ $submited = json_decode($contact_us->submit_contact_us($email, '', $query),true);
37	+
38	+ if(json_last_error() == JSON_ERROR_NONE && $submited)
39	+ {
40	+ do_action('wpns_show_message',MoWpnsMessages::showMessage('SUPPORT_FORM_SENT'),'SUCCESS');
41	+ return;
42	+ }
43	+ else{
44	+ do_action('wpns_show_message',MoWpnsMessages::showMessage('SUPPORT_FORM_ERROR'),'ERROR');
45	+ }
46	+ }
47	+ }
48	+ ?>

includes/css/style_settings.css CHANGED Viewed

@@ -3561,3 +3561,69 @@ input:checked + .slider:before {
             .slider.round:before {
               border-radius: 50%;
+            }


3561	.slider.round:before {
3562	border-radius: 50%;
3563	}
3564	+
3565	+ /* Christmas */
3566	+
3567	+ .mo2f_christmas_main_div
3568	+ {
3569	+ height:200px;background-color:white;border-top: 4px solid red;border-bottom: 4px solid red;
3570	+ width: 100%;
3571	+ }
3572	+
3573	+ .mo2f_christmas_first_section
3574	+ {
3575	+ width:41%;
3576	+ color:red;
3577	+ height: 167.5px;
3578	+ float: left;
3579	+ text-align: left;
3580	+
3581	+ }
3582	+ .mo2f_christmas_first_section_text
3583	+ {
3584	+ font-size: 73px !important;
3585	+ text-align: center;
3586	+ margin: 0px;
3587	+ margin-bottom: 4% !important;
3588	+ color: black;
3589	+
3590	+ }
3591	+ .mo2f_christmas_get_upto
3592	+ {
3593	+ text-align:center;margin:0px;margin-bottom: -2%;margin-top: 2%;color: black;font-size: 120%;
3594	+ }
3595	+ .mo2f_christmas_middle_section
3596	+ {
3597	+ width:39%;color:red;height: 100px;float: left;
3598	+ }
3599	+
3600	+ .mo2f_christmas_last_section
3601	+ {
3602	+ width:20%;color:red;height: 100px;float: left;text-align: left;
3603	+ }
3604	+
3605	+ .mo2f_christmas_contact_us
3606	+ {
3607	+ font-size: 23px;
3608	+ border-radius: 4px;
3609	+ background: red;
3610	+ border: 0px;
3611	+ color: white;
3612	+ padding: 12px 27px;
3613	+ text-decoration: none;
3614	+ }
3615	+
3616	+ .mo2f_christmas_contact_us:hover
3617	+ {
3618	+ color: white !important;
3619	+ }
3620	+
3621	+ .mo2f_christmas_contact_us_layout
3622	+ {
3623	+ border: 3px solid red !important;
3624	+ }
3625	+
3626	+ .mo2f_christmas_contact_us_button
3627	+ {
3628	+ background: red !important;
3629	+ }

includes/images/christmas_offer.PNG ADDED Viewed

Binary file

includes/images/santa-gif.gif ADDED Viewed

Binary file

miniorange_2_factor_settings.php CHANGED Viewed

	@@ -3,7 +3,7 @@
3	* Plugin Name: miniOrange 2 Factor Authentication
4	* Plugin URI: https://miniorange.com
5	* Description: This plugin provides various two-factor authentication methods as an additional layer of security after the default wordpress login. We Support Google/Authy/LastPass Authenticator, QR Code, Push Notification, Soft Token and Security Questions(KBA) for 3 User in the free version of the plugin.
6	- * Version: 5.4.25
7	* Author: miniOrange
8	* Author URI: https://miniorange.com
9	* Text Domain: miniorange-2-factor-authentication
	@@ -11,7 +11,7 @@
11	*/
12	include_once dirname(__FILE__).DIRECTORY_SEPARATOR.'database'.DIRECTORY_SEPARATOR.'mo2f_db_options.php';
13	define( 'MO_HOST_NAME', 'https://login.xecurify.com' );
14	- define( 'MO2F_VERSION', '5.4.25' );
15	define( 'MO2F_TEST_MODE', false );
16	define( 'MO2F_IS_ONPREM', get_option('is_onprem'));
17	class Miniorange_twoFactor{
	@@ -97,6 +97,7 @@
97
98	// As on plugins.php page not in the plugin
99	function feedback_request() {

100	if ( 'plugins.php' != basename( $_SERVER['PHP_SELF'] ) ) {
101	return;
102	}
	@@ -112,7 +113,6 @@
112	wp_enqueue_style( 'wp-pointer' );
113	wp_enqueue_script( 'wp-pointer' );
114	wp_enqueue_script( 'utils' );
115	- wp_enqueue_style( 'mo_wpns_admin_plugins_page_style', plugins_url( '/includes/css/style_settings.css?ver=4.8.60', __FILE__ ) );
116
117	include $mo2f_dirName . 'views'.DIRECTORY_SEPARATOR.'feedback_form.php';;
118
	@@ -124,6 +124,7 @@
124	{
125	load_plugin_textdomain( 'miniorange-2-factor-authentication', FALSE, dirname( plugin_basename(__FILE__) ) . '/lang/' );
126	}

127	function mo_wpns_malware_notices(){
128
129	$one_day = 606024;
	@@ -219,6 +220,7 @@
219	add_submenu_page( $menu_slug ,'miniOrange 2-Factor' ,'Addons' ,'administrator','mo_2fa_addons' , array( $this, 'mo_wpns'),10);
220	add_submenu_page( $menu_slug ,'miniOrange 2-Factor' ,'Upgrade' ,'administrator','mo_2fa_upgrade' , array( $this, 'mo_wpns'),12);
221	add_submenu_page( $menu_slug ,'miniOrange 2-Factor' ,'Request for Demo' ,'administrator','mo_2fa_request_demo' , array( $this, 'mo_wpns'),13);

222	$mo2fa_hook_page = add_users_page ('Reset 2nd Factor', null , 'manage_options', 'reset', array( $this, 'mo_reset_2fa_for_users_by_admin' ),66);
223
224


3	* Plugin Name: miniOrange 2 Factor Authentication
4	* Plugin URI: https://miniorange.com
5	* Description: This plugin provides various two-factor authentication methods as an additional layer of security after the default wordpress login. We Support Google/Authy/LastPass Authenticator, QR Code, Push Notification, Soft Token and Security Questions(KBA) for 3 User in the free version of the plugin.
6	+ * Version: 5.4.26
7	* Author: miniOrange
8	* Author URI: https://miniorange.com
9	* Text Domain: miniorange-2-factor-authentication

11	*/
12	include_once dirname(__FILE__).DIRECTORY_SEPARATOR.'database'.DIRECTORY_SEPARATOR.'mo2f_db_options.php';
13	define( 'MO_HOST_NAME', 'https://login.xecurify.com' );
14	+ define( 'MO2F_VERSION', '5.4.26' );
15	define( 'MO2F_TEST_MODE', false );
16	define( 'MO2F_IS_ONPREM', get_option('is_onprem'));
17	class Miniorange_twoFactor{

97
98	// As on plugins.php page not in the plugin
99	function feedback_request() {
100	+ wp_enqueue_style( 'mo_wpns_admin_plugins_page_style', plugins_url( '/includes/css/style_settings.css?ver=4.8.60', __FILE__ ) );
101	if ( 'plugins.php' != basename( $_SERVER['PHP_SELF'] ) ) {
102	return;
103	}

113	wp_enqueue_style( 'wp-pointer' );
114	wp_enqueue_script( 'wp-pointer' );
115	wp_enqueue_script( 'utils' );

116
117	include $mo2f_dirName . 'views'.DIRECTORY_SEPARATOR.'feedback_form.php';;
118

124	{
125	load_plugin_textdomain( 'miniorange-2-factor-authentication', FALSE, dirname( plugin_basename(__FILE__) ) . '/lang/' );
126	}
127	+
128	function mo_wpns_malware_notices(){
129
130	$one_day = 606024;

220	add_submenu_page( $menu_slug ,'miniOrange 2-Factor' ,'Addons' ,'administrator','mo_2fa_addons' , array( $this, 'mo_wpns'),10);
221	add_submenu_page( $menu_slug ,'miniOrange 2-Factor' ,'Upgrade' ,'administrator','mo_2fa_upgrade' , array( $this, 'mo_wpns'),12);
222	add_submenu_page( $menu_slug ,'miniOrange 2-Factor' ,'Request for Demo' ,'administrator','mo_2fa_request_demo' , array( $this, 'mo_wpns'),13);
223	+ add_submenu_page( $menu_slug ,'miniOrange 2-Factor' ,'Christmas Offers' ,'administrator','mo_2fa_request_christmas_offer' , array( $this, 'mo_wpns'),14);
224	$mo2fa_hook_page = add_users_page ('Reset 2nd Factor', null , 'manage_options', 'reset', array( $this, 'mo_reset_2fa_for_users_by_admin' ),66);
225
226

readme.txt CHANGED Viewed

	@@ -1,23 +1,23 @@
1	=== Google Authenticator - WordPress Two Factor Authentication (2FA , MFA) ===
2
3	Contributors: cyberlord92, twofactor, hsn97
4	- Tags: google authenticator, two factor authentication, two factor, 2FA,two-step verification, mobile verification,OTP, two-step verification, mobile verification,two factor,Two step verification, 2FA, TFA, MFA, 2 factor authentication, Remember Device, OTP,WordPress otp, two step authentication,Clef,SMS, email, signup security, two factor auth, Mobile Authentication, strong authentication, 2 step authentication, mobile verification,Multifactor authentication, passwordless login, one time passcode, soft token Authentication, QR Code Authentication, email verification, KBA, Security Questions,2FA, login OTP, login with SMS, mobile login, phone login, OTP login, mobile verification,knowledge based authentication,authy, authy two factor,yubico,Two-Factor Authentication,WordPress otp, security,user security, Twilio WordPress, SMS gateway, Solutions Infini, Clickatell, BulkSMS, MSG91, Nexmo, SMS Country, message, woocommerce, website security, login security, multi factor authentication, multi factor,wordfence, IP Blocking, IP Whitelisting, login Audits, woocommerce, SMS login, passwordless login, auth, login with OTP WordPress, OTP, two-step authentication, Mobile Authentication, passwordless login, login without password, passwordless authentication, secure login, temporary login, temporary access, one time passcode, email verification, security, website security, login security, multi-factor authentication, woocommerce, smartphone, WordPress otp, register with OTP, user OTP verification, SMS OTP, OTP Email, registration with OTP verification, registration verification,smartphone authentication
5	Donate link: https://miniorange.com/
6	Requires at least: 3.0.1
7	Tested up to: 5.6
8	Requires PHP: 5.3.0
9	- Stable tag: 5.4.25
10	License: GPLv2 or later
11	License URI: http://www.gnu.org/licenses/gpl-2.0.html
12
13	- Google Authenticator, OTP verificaion - SMS and Email, Apps like Microsoft, Duo, LastPass & more on login and Registration for all forms. Google AUthenticator also Supports QR Code, Push Notification and Security Questions along with the Google Authenticator itself.
14
15	== Description ==
16
17	- Google Authenticator - Two Factor Authentication (2FA) plugin provides a completely Secure login to your WordPress website. Google Authenticator- Two Factor Authentication (2FA) is a FREE, Simple & very easy to setup plugin. Google Authenticator provides two factor authentication (2FA, MFA) whenever login to your WordPress website ensuring no unauthorised access to your website. Google Authenticator can be configured for any TOTP based Authentication Method.
18
19	= User Identity Verification or OTP Verification =
20	- Login and Registration: Verify users on login and Registration with different authentication methods like Google Authenticator, SMS Verification, Email, Authy Authenticator, Duo Authenticator, Microsoft Authenticator, TOTP Based Authenticator, Security Questions and many others. Easy OTP Verification with SMS Verification and Email Verification.
21
22	= Google Authenticator and other 2FA sync on multiple websites =
23	You would not need to configure Google Authenticator and other 2FA methods from second site onword. Just login with miniOrange account and your 2FA will automatically get set. This is available for Google Authenticator, Duo Authenticator, Microsoft Authenticator, Securty Questions, LastPass, Authy, miniOrange methods, OTP over SMS, OTP over Email. It is supported only if you are using our cloud services.
	@@ -121,8 +121,11 @@ OTP Verification on all the Registration and Google Authenticator, Security Ques
121	* Brute force attack prevention, IP Blocking & User login Monitorning.
122	* File protection & strong password
123
124	- = PASSWORDLESS LOGIN =
125	- Passwordless login is a new way of login in which you and your users can login without entering the password. The login can be done by username and 2-factor or only username which can be decided based on the user role. If a role is not allowed for passwordless login they will login with password and username.



126
127	== Prevent Account Sharing Between Users ==
128	Many video sharing and E-learning platforms want to prevent sharing of account between the users. This can be done using miniOrange Two factor plugin. Also, e-learning portals can use this to their advantage. It can be used on any websites which create and sell courses. It can be integrated with plugins like Learndash.
	@@ -141,6 +144,7 @@ Other sites like premium video content or any premium content where you want use
141	* Limit Rate of Request : Protecting resources from any security hole exploit
142	* Crawler Detection and blocking
143	* Blocking IP and Attacks

144	* Country Blocking and Browser Blocking
145	* Brute Force Attacks prevention to stop password hack
146	* Captcha for Bot Detection
	@@ -190,7 +194,7 @@ Adding to this, you can also use the same account on multiple applications and y
190	*[Beginner’s Guide: How to Add Two-Factor Authentication to WordPress](https://themeisle.com/blog/how-to-add-two-factor-authentication-to-wordpress/)
191	*[How to Add WordPress Two-Factor Authentication (2FA)](https://phppot.com/wordpress/how-to-add-wordpress-two-factor-authentication-2fa-using-google-authenticator-plugin/)
192
193	- Customized solutions and Active support is available. Email us at info@~~miniorange~~.com or call us at +1 9786589387.
194
195	Note: The plugin is GDPR Compliant and supports wide variety of Language Translation
196
	@@ -248,7 +252,7 @@ Please check your php version. The plugin is supported in php version 5.3.0 or a
248
249	= I did not recieve OTP while trying to register with miniOrange. What should I do? =
250
251	- The OTP is sent to your email address with which you have registered with miniOrange. If you can't see the email from miniOrange in your mails, please make sure to check your SPAM folder. If you don't see an email even in SPAM folder, please submit a query in our Support Section in the plugin or you can contact us at info@~~miniorange~~.com.
252
253	= I want to configure 2nd factor by Google Authenticator. =
254
	@@ -267,11 +271,11 @@ There are two cases according to the page you see -<br>
267
268	= I have a custom / front-end login page on my site and I want the look and feel to remain the same when I add 2 factor ? =
269
270	- If you have a custom login form other than wp-login.php then we will provide you the shortcode. Shortcode will work only for the customized login page created from wordpress plugins. We are not claiming that it will work with all the customized login page. In such case, custom work is needed to integrate two factor with your customized login page. You can submit a query in our <b>Support Section</b> in the plugin or you can contact us at info@~~miniorange~~.com for more details.
271
272	= I have Woocommerce theme login page on my site. How can I enable Two Factor ? =
273
274	- If you have Woocommerce theme login then go to Advanced Options Tab and check Enable Two-Factor for Woocommerce Front End Login. If you need any help setting up 2-Factor for your Woocommerce theme login form, please submit a query in our Support Section in the plugin or you can contact us at info@~~miniorange~~.com.
275
276	= I have installed plugins which limit the login attempts like Limit Login Attempt, Loginizer, Wordfence etc. Is there any incompatibilities with these kind of plugins? =
277
	@@ -279,11 +283,11 @@ The limit login attempt kind of plugins limit the number of login attempts and b
279
280	= If you are using any Security Plugin in WordPress like Simple Security Firewall, All in One WP Security Plugin and you are not able to login with Two-Factor. =
281
282	- Our Two-Factor plugin is compatible with most of the security plugins, but if it is not working for you. Please submit a query in our Support Section in the plugin or you can contact us at info@~~miniorange~~.com.
283
284	= If you are using any render blocking javascript and css plugin like Async JS and CSS Plugin and you are not able to login with Two-Factor or your screen got blank. =
285
286	- If you are using Async JS and CSS Plugin. Please go to its settings and add jquery in the list of exceptions and save settings. It will work. If you are still not able to get it right, Please submit a query in our Support Section in the plugin or you can contact us at info@~~miniorange~~.com.
287
288	= My users have different types of phones. What phones are supported? =
289
	@@ -324,7 +328,7 @@ You can login using our alternate login method. Click on the Forgot Phone link a
324
325	= My phone has no internet connectivity and i am entering the one time passcode from miniOrange Authenticator App, it says Invalid OTP?
326
327	- Click on the <b>Settings Icon</b> on top right corner in <b>miniOrange Authenticator App</b> and then press <b>Sync button</b> under 'Time correction for codes' to sync your time with miniOrange Servers. If you still can't logged in then please email us at info@~~miniorange~~.com or <a href="https://miniorange.com/contact" target="_blank">Contact us</a>.Soft Token method is just like google authenticator method.
328
329	= I want to go back to default login with password? =
330
	@@ -334,9 +338,15 @@ You should go to <b>Login Settings Tab</b> and uncheck <b>Enable Two-Factor plug
334
335	You should go to <b>Setup Two Factor</b> Tab and click on <b>Reconfigure</b> to reconfigure 2-Factor with your new phone.
336






337	= What If I want to use any other second factor like OTP Over SMS, Security Questions, Device Id, etc ? =
338
339	- miniOrange authentication service has 15+ authentication methods.One time passcodes (OTP) over SMS, OTP over Email, OTP over SMS and Email, Out of Band SMS, Out of Band Email, Soft Token, Push Notification, USB based Hardware token (yubico), Security Questions, Mobile Authentication (QR Code Authentication), Voice Authentication (Biometrics), Phone Verification, Device Identification, Location, Time of Access User Behavior. To know more about authentication methods, please visit <a href="https://miniorange.com/strong_auth" target="_blank">https://miniorange.com/strong_auth </a>. If you want to have any other 2-factor for your WordPress site, please email us at info@~~miniorange~~.com or <a href="https://miniorange.com/contact" target="_blank">Contact us</a>.
340
341	== Screenshots ==
342
	@@ -351,6 +361,10 @@ miniOrange authentication service has 15+ authentication methods.One time passco
351
352	== Changelog ==
353




354	= 5.4.25 =
355	* Google Authenticator - Two Factor Authentication (2FA, OTP) :
356	* OTP over Telegram Fixes
	@@ -921,6 +935,10 @@ More descriptive setup messages and UI changes.
921
922	== Upgrade Notice ==
923




924	= 5.4.25 =
925	* Google Authenticator - Two Factor Authentication (2FA, OTP) :
926	* OTP over Telegram Fixes
	@@ -1272,7 +1290,7 @@ More descriptive setup messages and UI changes.
1272
1273	= 4.4 =
1274	* Google Authenticator - Two Factor Authentication (2FA):
1275	- * Note: This is very important update having altogether new UI and compatibility with Limit Login Attempts. After updating, please do not logout from your admin dashboard. Try to login from another browser and if you face any issue , please contact us at info@~~miniorange~~.com
1276	* Compatibility with Limit Login Attempts.
1277	* New User Interface for login.
1278


1	=== Google Authenticator - WordPress Two Factor Authentication (2FA , MFA) ===
2
3	Contributors: cyberlord92, twofactor, hsn97
4	+ Tags: google authenticator, two factor authentication, two factor, 2FA,two-step verification, mobile verification,OTP, two-step verification, mobile verification,two factor,Two step verification, 2FA, TFA, MFA, 2 factor authentication, Remember Device, OTP,WordPress otp, two step authentication,Clef,SMS, email, signup security, two factor auth, Mobile Authentication, strong authentication, 2 step authentication, mobile verification,Multifactor authentication, passwordless login, one time passcode, soft token Authentication, QR Code Authentication, email verification, KBA, Security Questions,2FA, login OTP, login with SMS, mobile login, phone login, OTP login, mobile verification,knowledge based authentication,authy, authy two factor,yubico,Two-Factor Authentication,WordPress otp, security,user security, Twilio WordPress, SMS gateway, Solutions Infini, Clickatell, BulkSMS, MSG91, Nexmo, SMS Country, message, woocommerce, website security, login security, multi factor authentication, multi factor,wordfence, IP Blocking, IP Whitelisting, login Audits, woocommerce, SMS login, passwordless login, auth, login with OTP WordPress, OTP, two-step authentication, Mobile Authentication, passwordless login, login without password, passwordless authentication, secure login, temporary login, temporary access, WebAuthn, login with telegram, login with whatsapp, one time passcode, email verification, security, website security, login security, multi-factor authentication, woocommerce, smartphone, WordPress otp, register with OTP, user OTP verification, SMS OTP, OTP Email, registration with OTP verification, registration verification,smartphone authentication
5	Donate link: https://miniorange.com/
6	Requires at least: 3.0.1
7	Tested up to: 5.6
8	Requires PHP: 5.3.0
9	+ Stable tag: 5.4.26
10	License: GPLv2 or later
11	License URI: http://www.gnu.org/licenses/gpl-2.0.html
12
13	+ Google Authenticator, OTP verificaion - SMS and Email, Apps like Microsoft, Duo, LastPass & more on login and Registration for all forms. Google AUthenticator also Supports QR Code, Push Notification, Passwordless login and Security Questions along with the Google Authenticator itself.
14
15	== Description ==
16
17	+ Google Authenticator - Two Factor Authentication (2FA) plugin provides a completely Secure login to your WordPress website. Google Authenticator- Two Factor Authentication (2FA) is a FREE, Simple & very easy to setup plugin. Google Authenticator provides two factor authentication (2FA, MFA) whenever login to your WordPress website ensuring no unauthorised access to your website. Google Authenticator can be configured for any TOTP based Authentication Method. Google authenticator also provides OTP Over SMS, OTP Over Email, WebAuthn, Passwordless login and many more features.
18
19	= User Identity Verification or OTP Verification =
20	+ Login and Registration: Verify users on login and Registration with different authentication methods like Google Authenticator, SMS Verification, Email, Authy Authenticator, Duo Authenticator, Microsoft Authenticator, TOTP Based Authenticator, Security Questions and many others. Easy OTP Verification with SMS Verification and Email Verification. Login without password i.e. Password less login with only username and the second factor.
21
22	= Google Authenticator and other 2FA sync on multiple websites =
23	You would not need to configure Google Authenticator and other 2FA methods from second site onword. Just login with miniOrange account and your 2FA will automatically get set. This is available for Google Authenticator, Duo Authenticator, Microsoft Authenticator, Securty Questions, LastPass, Authy, miniOrange methods, OTP over SMS, OTP over Email. It is supported only if you are using our cloud services.

121	* Brute force attack prevention, IP Blocking & User login Monitorning.
122	* File protection & strong password
123
124	+ == PASSWORDLESS LOGIN ==
125	+ Passwordless login is a new way of login in which you and your users can login without entering the password. The login can be done by username and 2-factor or only username which can be decided based on the user role. If a role is not allowed for passwordless login they will login with password and username. All authentication method including OTP Over SMS and OTP Over email is supported for passwordless login.
126	+
127	+ == WebAuthn ==
128	+ WebAuthn is a new way for you to authenticate yourself in your website. It modifies the old way of authentication by removing the password need. It helps you replace your passwords with devices like USB Keys, fingerprint scanners, Windows Hello compatible cameras, FaceID/TouchID and more
129
130	== Prevent Account Sharing Between Users ==
131	Many video sharing and E-learning platforms want to prevent sharing of account between the users. This can be done using miniOrange Two factor plugin. Also, e-learning portals can use this to their advantage. It can be used on any websites which create and sell courses. It can be integrated with plugins like Learndash.

144	* Limit Rate of Request : Protecting resources from any security hole exploit
145	* Crawler Detection and blocking
146	* Blocking IP and Attacks
147	+ * Passwordless login : Login without password
148	* Country Blocking and Browser Blocking
149	* Brute Force Attacks prevention to stop password hack
150	* Captcha for Bot Detection

194	*[Beginner’s Guide: How to Add Two-Factor Authentication to WordPress](https://themeisle.com/blog/how-to-add-two-factor-authentication-to-wordpress/)
195	*[How to Add WordPress Two-Factor Authentication (2FA)](https://phppot.com/wordpress/how-to-add-wordpress-two-factor-authentication-2fa-using-google-authenticator-plugin/)
196
197	+ Customized solutions and Active support is available. Email us at info@xecurify.com or call us at +1 9786589387.
198
199	Note: The plugin is GDPR Compliant and supports wide variety of Language Translation
200

252
253	= I did not recieve OTP while trying to register with miniOrange. What should I do? =
254
255	+ The OTP is sent to your email address with which you have registered with miniOrange. If you can't see the email from miniOrange in your mails, please make sure to check your SPAM folder. If you don't see an email even in SPAM folder, please submit a query in our Support Section in the plugin or you can contact us at info@xecurify.com.
256
257	= I want to configure 2nd factor by Google Authenticator. =
258

271
272	= I have a custom / front-end login page on my site and I want the look and feel to remain the same when I add 2 factor ? =
273
274	+ If you have a custom login form other than wp-login.php then we will provide you the shortcode. Shortcode will work only for the customized login page created from wordpress plugins. We are not claiming that it will work with all the customized login page. In such case, custom work is needed to integrate two factor with your customized login page. You can submit a query in our <b>Support Section</b> in the plugin or you can contact us at info@xecurify.com for more details.
275
276	= I have Woocommerce theme login page on my site. How can I enable Two Factor ? =
277
278	+ If you have Woocommerce theme login then go to Advanced Options Tab and check Enable Two-Factor for Woocommerce Front End Login. If you need any help setting up 2-Factor for your Woocommerce theme login form, please submit a query in our Support Section in the plugin or you can contact us at info@xecurify.com.
279
280	= I have installed plugins which limit the login attempts like Limit Login Attempt, Loginizer, Wordfence etc. Is there any incompatibilities with these kind of plugins? =
281

283
284	= If you are using any Security Plugin in WordPress like Simple Security Firewall, All in One WP Security Plugin and you are not able to login with Two-Factor. =
285
286	+ Our Two-Factor plugin is compatible with most of the security plugins, but if it is not working for you. Please submit a query in our Support Section in the plugin or you can contact us at info@xecurify.com.
287
288	= If you are using any render blocking javascript and css plugin like Async JS and CSS Plugin and you are not able to login with Two-Factor or your screen got blank. =
289
290	+ If you are using Async JS and CSS Plugin. Please go to its settings and add jquery in the list of exceptions and save settings. It will work. If you are still not able to get it right, Please submit a query in our Support Section in the plugin or you can contact us at info@xecurify.com.
291
292	= My users have different types of phones. What phones are supported? =
293

328
329	= My phone has no internet connectivity and i am entering the one time passcode from miniOrange Authenticator App, it says Invalid OTP?
330
331	+ Click on the <b>Settings Icon</b> on top right corner in <b>miniOrange Authenticator App</b> and then press <b>Sync button</b> under 'Time correction for codes' to sync your time with miniOrange Servers. If you still can't logged in then please email us at info@xecurify.com or <a href="https://miniorange.com/contact" target="_blank">Contact us</a>.Soft Token method is just like google authenticator method.
332
333	= I want to go back to default login with password? =
334

338
339	You should go to <b>Setup Two Factor</b> Tab and click on <b>Reconfigure</b> to reconfigure 2-Factor with your new phone.
340
341	+ = How to enable Passwordless login / login without password for a certain role =
342	+
343	+ please email us at info@xecurify.com or <a href="https://miniorange.com/contact" target="_blank">Contact us</a>
344	+
345	+
346	+
347	= What If I want to use any other second factor like OTP Over SMS, Security Questions, Device Id, etc ? =
348
349	+ miniOrange authentication service has 15+ authentication methods.One time passcodes (OTP) over SMS, OTP over Email, OTP over SMS and Email, Out of Band SMS, Out of Band Email, Soft Token, Push Notification, USB based Hardware token (yubico), Security Questions, Mobile Authentication (QR Code Authentication), Voice Authentication (Biometrics), Phone Verification, Device Identification, Location, Time of Access User Behavior. To know more about authentication methods, please visit <a href="https://miniorange.com/strong_auth" target="_blank">https://miniorange.com/strong_auth </a>. If you want to have any other 2-factor for your WordPress site, please email us at info@xecurify.com or <a href="https://miniorange.com/contact" target="_blank">Contact us</a>.
350
351	== Screenshots ==
352

361
362	== Changelog ==
363
364	+ = 5.4.26 =
365	+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
366	+ * Christmas Offer UI.
367	+
368	= 5.4.25 =
369	* Google Authenticator - Two Factor Authentication (2FA, OTP) :
370	* OTP over Telegram Fixes

935
936	== Upgrade Notice ==
937
938	+ = 5.4.26 =
939	+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
940	+ * Christmas Offer UI.
941	+
942	= 5.4.25 =
943	* Google Authenticator - Two Factor Authentication (2FA, OTP) :
944	* OTP over Telegram Fixes

1290
1291	= 4.4 =
1292	* Google Authenticator - Two Factor Authentication (2FA):
1293	+ * Note: This is very important update having altogether new UI and compatibility with Limit Login Attempts. After updating, please do not logout from your admin dashboard. Try to login from another browser and if you face any issue , please contact us at info@xecurify.com
1294	* Compatibility with Limit Login Attempts.
1295	* New User Interface for login.
1296

views/navbar.php CHANGED Viewed

@@ -20,15 +20,53 @@ $security_features_nonce = wp_create_nonce('mo_2fa_security_features_nonce');
             			echo MoWpnsMessages::showMessage('WHITELIST_SELF');
+            		}
+            	}
-            -
             	if((!get_user_meta($userID, 'mo_backup_code_generated', true) || ($backup_codes_remaining == 5 && !get_user_meta($userID, 'mo_backup_code_downloaded', true))) && $mo2f_two_fa_method != '' && !get_user_meta($userID, 'donot_show_backup_code_notice', true)){
             		echo MoWpnsMessages::showMessage('GET_BACKUP_CODES');
+            	}
-            -
             if( isset( $_GET[ 'page' ]) && $_GET['page'] != 'mo_2fa_upgrade')
+            	{
-            -
            			echo'<div class="wrap">
-            -
            				<div><img  style="float:left;margin-top:5px;" src="'.$logo_url.'"></div>
             				<h1>
             					miniOrange 2-Factor
             					<a class="add-new-h2" style="font-size:17px;border-radius:4px;"  href="'.$profile_url.'">Account</a>
@@ -97,4 +135,7 @@ echo'					<span style="text-align:right;">
             			?>
             		</div>
             <?php
-            -
            	}


20	echo MoWpnsMessages::showMessage('WHITELIST_SELF');
21	}
22	}
23	+ ?>
24	+ <?php
25	if((!get_user_meta($userID, 'mo_backup_code_generated', true) \|\| ($backup_codes_remaining == 5 && !get_user_meta($userID, 'mo_backup_code_downloaded', true))) && $mo2f_two_fa_method != '' && !get_user_meta($userID, 'donot_show_backup_code_notice', true)){
26	echo MoWpnsMessages::showMessage('GET_BACKUP_CODES');
27	}
28	+ ?>
29	+ <br><br>
30	+ <?php
31	if( isset( $_GET[ 'page' ]) && $_GET['page'] != 'mo_2fa_upgrade')
32	{
33	+ echo'<div class="wrap">';
34	+
35	+ $date1 = "2020-12-31";
36	+ $dateTimestamp1 = strtotime($date1);
37	+
38	+ $date2 = date("Y-m-d");
39	+ $dateTimestamp2 = strtotime($date2);
40	+
41	+ if($dateTimestamp2<=$dateTimestamp1)
42	+ {
43	+ echo'<div class="mo2f_christmas_main_div">
44	+
45	+
46	+
47	+ <div class="mo2f_christmas_first_section">
48	+ <img style="height: 201px;width: 540px;" src="'.dirname(plugin_dir_url(__FILE__)).'/includes/images/christmas_offer.png">
49	+
50	+ </div>
51	+
52	+ <div class="mo2f_christmas_middle_section">
53	+ <p class="mo2f_christmas_get_upto">Get Upto </p>
54	+ <p class="mo2f_christmas_first_section_text">50% off</p>
55	+ <center><a class="mo2f_christmas_contact_us" href="'.$request_christmas_offer_url.'">Contact Us</a></center>
56	+ </div>
57	+
58	+ <div class="mo2f_christmas_last_section">
59	+ <img src="'.dirname(plugin_dir_url(__FILE__)).'/includes/images/santa-gif.gif">
60	+ </div>
61	+
62	+
63	+
64	+
65	+
66	+
67	+ </div><br><br>';
68	+ }
69	+ echo' <div><img style="float:left;margin-top:5px;" src="'.$logo_url.'"></div>
70	<h1>
71	miniOrange 2-Factor
72	<a class="add-new-h2" style="font-size:17px;border-radius:4px;" href="'.$profile_url.'">Account</a>

135	?>
136	</div>
137	<?php
138	+ }
139	+
140	+
141	+

views/request_christmas_offer.php ADDED Viewed

	@@ -0,0 +1,36 @@


1	+ <div class="mo_wpns_divided_layout">
2	+ <div class="mo_wpns_setting_layout mo2f_christmas_contact_us_layout">
3	+ <h3> Request For Christmas Offer : <div style="float: right;">
4	+ <?php
5	+ echo '<a class="mo_wpns_button mo_wpns_button1 mo2f_christmas_contact_us_button" href="'.$two_fa.'">Back</a>';
6	+ ?>
7	+ </div></h3>
8	+ <form method="post">
9	+ <input type="hidden" name="option" value="mo_2FA_christmas_request_form" />
10	+ <input type="hidden" name="nonce" value="<?php echo wp_create_nonce('mo2f-Request-christmas')?>">
11	+ <table cellpadding="4" cellspacing="4">
12	+ <tr>
13	+ <td><strong>Usecase : </strong></td>
14	+ <td>
15	+ <textarea type="text" name="mo_2FA_christmas_usecase" style="resize: vertical; width:350px; height:100px;" rows="4" placeholder="Write us about your usecase" required value=""></textarea>
16	+ </td>
17	+
18	+
19	+ </tr>
20	+ <tr>
21	+ <td>
22	+ </td>
23	+
24	+ </tr>
25	+ <tr>
26	+ <td><strong>Email ID : </strong></td>
27	+ <td><input required type="email" name="mo_2FA_christmas_email" placeholder="Email id" value="" /></td>
28	+ </tr>
29	+
30	+ </table>
31	+ <div style="padding-top: 10px;">
32	+ <input type="submit" name="submit" value="Submit Request" class="mo_wpns_button mo_wpns_button1 mo2f_christmas_contact_us_button" />
33	+ </div>
34	+ </form>
35	+ </div>
36	+ </div>

Google Authenticator – WordPress Two Factor Authentication (2FA) - Version 5.4.26

Version Description

Release Info

Code changes from version 5.4.25 to 5.4.26