Google Authenticator – WordPress Two Factor Authentication (2FA) - Version 5.4.29

Version Description

  • Google Authenticator - Two Factor Authentication (2FA, OTP) :
  • Session independent Google Authenticator
  • Session independent KBA
  • Feedback improvement for two factor authentication plugin
Download this release

Release Info

Developer cyberlord92
Plugin Icon 128x128 Google Authenticator – WordPress Two Factor Authentication (2FA)
Version 5.4.29
Comparing to
See all releases

Code changes from version 5.4.28 to 5.4.29

Files changed (15) hide show
  1. api/class-rba-attributes.php +8 -3
  2. controllers/twofa/mo2fa_inline_registration.php +5 -3
  3. database/database_functions.php +15 -14
  4. database/database_functions_2fa.php +16 -0
  5. handler/twofa/gaonprem.php +25 -7
  6. handler/twofa/setup_twofa.php +25 -1
  7. handler/twofa/two_fa_pass2login.php +35 -18
  8. handler/twofa/two_fa_settings.php +16 -11
  9. helper/constants.php +1 -1
  10. miniorange_2_factor_settings.php +2 -2
  11. readme.txt +1509 -1535
  12. views/twofa/setup/setup_google_authenticator.php +7 -4
  13. views/twofa/setup/setup_google_authenticator_onpremise.php +2 -1
  14. views/twofa/setup_twofa.php +3 -3
  15. views/twofa/test/test_twofa_kba_questions.php +6 -4
api/class-rba-attributes.php CHANGED
@@ -137,13 +137,18 @@ class Miniorange_Rba_Attributes {
137
  if(MO2F_IS_ONPREM){
138
  include_once dirname(dirname( __FILE__ )) . DIRECTORY_SEPARATOR. 'handler'.DIRECTORY_SEPARATOR. 'twofa' . DIRECTORY_SEPARATOR . 'gaonprem.php';
139
  $gauth_obj= new Google_auth_onpremise();
140
- $secret = isset($_SESSION['secret_ga'])? $_SESSION['secret_ga'] : $secret;
141
- $content=$gauth_obj->verifyCode($secret , $otptoken );
 
 
 
 
 
142
  $value = json_decode($content,true);
143
  if($value['status'] == 'SUCCESS'){
144
  $user = wp_get_current_user();
145
  $user_id = $user->ID;
146
- $gauth_obj->mo_GAuth_set_secret($user_id, $secret);
147
  update_user_meta($user_id,'mo2f_2FA_method_to_configure','Google Authenticator');
148
  update_user_meta( $user_id, 'mo2f_external_app_type', "Google Authenticator" );
149
  global $Mo2fdbQueries;//might not need this
137
  if(MO2F_IS_ONPREM){
138
  include_once dirname(dirname( __FILE__ )) . DIRECTORY_SEPARATOR. 'handler'.DIRECTORY_SEPARATOR. 'twofa' . DIRECTORY_SEPARATOR . 'gaonprem.php';
139
  $gauth_obj= new Google_auth_onpremise();
140
+ $session_id_encrypt = isset($_POST['mo2f_session_id']) ? sanitize_text_field($_POST['mo2f_session_id']) : null;
141
+ if($session_id_encrypt){
142
+ $secret_ga = MO2f_Utility::mo2f_retrieve_user_temp_values( 'secret_ga',$session_id_encrypt );
143
+ }else{
144
+ $secret_ga = $secret;
145
+ }
146
+ $content=$gauth_obj->verifyCode($secret_ga , $otptoken );
147
  $value = json_decode($content,true);
148
  if($value['status'] == 'SUCCESS'){
149
  $user = wp_get_current_user();
150
  $user_id = $user->ID;
151
+ $gauth_obj->mo_GAuth_set_secret($user_id, $secret_ga);
152
  update_user_meta($user_id,'mo2f_2FA_method_to_configure','Google Authenticator');
153
  update_user_meta( $user_id, 'mo2f_external_app_type', "Google Authenticator" );
154
  global $Mo2fdbQueries;//might not need this
controllers/twofa/mo2fa_inline_registration.php CHANGED
@@ -496,9 +496,11 @@ function prompt_user_for_miniorange_app_setup($current_user_id, $login_status, $
496
  }
497
 
498
  function prompt_user_for_google_authenticator_setup($current_user_id, $login_status, $login_message,$redirect_to,$session_id){
499
- $mo2f_google_auth=json_decode(get_user_meta($current_user_id,'mo2f_google_auth', true),true);
500
- $data = isset($mo2f_google_auth) ? $mo2f_google_auth['ga_qrCode'] : null;
501
- $ga_secret = isset($mo2f_google_auth) ? $mo2f_google_auth['ga_secret'] : null;
 
 
502
 
503
  ?>
504
  <html>
496
  }
497
 
498
  function prompt_user_for_google_authenticator_setup($current_user_id, $login_status, $login_message,$redirect_to,$session_id){
499
+ // $mo2f_google_auth=json_decode(get_user_meta($current_user_id,'mo2f_google_auth', true),true);
500
+ // $data = isset($mo2f_google_auth) ? $mo2f_google_auth['ga_qrCode'] : null;
501
+ // $ga_secret = isset($mo2f_google_auth) ? $mo2f_google_auth['ga_secret'] : null;
502
+ $ga_secret = MO2f_Utility::mo2f_retrieve_user_temp_values( 'secret_ga',$session_id );
503
+ $data = MO2f_Utility::mo2f_retrieve_user_temp_values( 'ga_qrCode',$session_id );
504
 
505
  ?>
506
  <html>
database/database_functions.php CHANGED
@@ -130,20 +130,7 @@
130
  $sql1= "UPDATE $this->malwarereportTable SET `scan_mode`='Custom Scan';";
131
  $resluts = $wpdb->query($sql1);
132
  }
133
- $result= $wpdb->get_var("SHOW COLUMNS FROM `$tableName` LIKE 'repo_key'");
134
- if(is_null($result)){
135
- $sql = "ALTER TABLE `$tableName` ADD `repo_key` mediumtext AFTER `malicious_links` ;";
136
- $results1 = $wpdb->query($sql);
137
- $sql1= "UPDATE $this->malwarereportTable SET `repo_key`= NULL;";
138
- $resluts = $wpdb->query($sql1);
139
- }
140
- $result= $wpdb->get_var("SHOW COLUMNS FROM `$tableName` LIKE 'net_connection'");
141
- if(is_null($result)){
142
- $sql = "ALTER TABLE `$tableName` ADD `net_connection` mediumtext AFTER `repo_key` ;";
143
- $results1 = $wpdb->query($sql);
144
- $sql1= "UPDATE $this->malwarereportTable SET `net_connection`= 0;";
145
- $resluts = $wpdb->query($sql1);
146
- }
147
 
148
  $tableName = $this->scanreportdetails;
149
  if($wpdb->get_var("show tables like '$tableName'") != $tableName)
@@ -200,6 +187,20 @@
200
  if(empty($rowhash)){
201
  $result = $wpdb->query("ALTER TABLE $this->hashfile ADD COLUMN `scan_data` mediumtext NOT NULL");
202
  }
 
 
 
 
 
 
 
 
 
 
 
 
 
 
203
  }
204
 
205
  function insert_backup_detail($backup_id,$file_name,$backup_created_timestamp,$plugin_path){
130
  $sql1= "UPDATE $this->malwarereportTable SET `scan_mode`='Custom Scan';";
131
  $resluts = $wpdb->query($sql1);
132
  }
133
+
 
 
 
 
 
 
 
 
 
 
 
 
 
134
 
135
  $tableName = $this->scanreportdetails;
136
  if($wpdb->get_var("show tables like '$tableName'") != $tableName)
187
  if(empty($rowhash)){
188
  $result = $wpdb->query("ALTER TABLE $this->hashfile ADD COLUMN `scan_data` mediumtext NOT NULL");
189
  }
190
+ $result= $wpdb->get_results("SHOW COLUMNS FROM ".$this->malwarereportTable." LIKE 'repo_key'");
191
+ if(empty($result)){
192
+ $sql = "ALTER TABLE $this->malwarereportTable ADD `repo_key` mediumtext AFTER `malicious_links` ;";
193
+ $results1 = $wpdb->query($sql);
194
+ $sql1= "UPDATE $this->malwarereportTable SET `repo_key`= NULL;";
195
+ $resluts = $wpdb->query($sql1);
196
+ }
197
+ $result= $wpdb->get_results("SHOW COLUMNS FROM `$tableName` LIKE 'net_connection'");
198
+ if(empty($result)){
199
+ $sql = "ALTER TABLE $this->malwarereportTable ADD `net_connection` mediumtext AFTER `repo_key` ;";
200
+ $results1 = $wpdb->query($sql);
201
+ $sql1= "UPDATE $this->malwarereportTable SET `net_connection`= 0;";
202
+ $resluts = $wpdb->query($sql1);
203
+ }
204
  }
205
 
206
  function insert_backup_detail($backup_id,$file_name,$backup_created_timestamp,$plugin_path){
database/database_functions_2fa.php CHANGED
@@ -97,6 +97,8 @@ class Mo2fDB {
97
  `mo2f_transactionId` mediumtext NOT NULL ,
98
  `mo_2_factor_kba_questions` longtext NOT NULL ,
99
  `mo2f_rba_status` longtext NOT NULL ,
 
 
100
  `ts_created` TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
101
  PRIMARY KEY (`session_id`(100)));";
102
 
@@ -110,6 +112,20 @@ class Mo2fDB {
110
  $this->execute_add_column( $query );
111
 
112
  }
 
 
 
 
 
 
 
 
 
 
 
 
 
 
113
 
114
  }
115
  function get_current_user_email($id)
97
  `mo2f_transactionId` mediumtext NOT NULL ,
98
  `mo_2_factor_kba_questions` longtext NOT NULL ,
99
  `mo2f_rba_status` longtext NOT NULL ,
100
+ `secret_ga` mediumtext NOT NULL,
101
+ `ga_qrCode` mediumtext NOT NULL,
102
  `ts_created` TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
103
  PRIMARY KEY (`session_id`(100)));";
104
 
112
  $this->execute_add_column( $query );
113
 
114
  }
115
+ $check_if_column_exists = $this->check_if_column_exists( "user_login_info_table", "secret_ga" );
116
+
117
+ if ( ! $check_if_column_exists ) {
118
+ $query = "ALTER TABLE `$tableName` ADD COLUMN `secret_ga` mediumtext NOT NULL";
119
+ $this->execute_add_column( $query );
120
+
121
+ }
122
+ $check_if_column_exists = $this->check_if_column_exists( "user_login_info_table", "ga_qrCode" );
123
+
124
+ if ( ! $check_if_column_exists ) {
125
+ $query = "ALTER TABLE `$tableName` ADD COLUMN `ga_qrCode` mediumtext NOT NULL";
126
+ $this->execute_add_column( $query );
127
+
128
+ }
129
 
130
  }
131
  function get_current_user_email($id)
handler/twofa/gaonprem.php CHANGED
@@ -11,19 +11,37 @@ class Google_auth_onpremise{
11
 
12
  $user=wp_get_current_user();
13
  $user_id=$user->ID;
14
- if(!isset($_SESSION)){
15
- session_start();
 
 
 
 
 
 
 
 
 
16
  }
17
- if(!isset($_SESSION['secret_ga'])){
18
- $_SESSION['secret_ga'] = $this->createSecret();
 
 
19
  }
 
 
20
  $issuer=get_option('mo2f_google_appname', 'miniOrangeAu');
21
  $email=$user->user_email;
22
 
23
- $otpcode=$this->getCode($_SESSION['secret_ga']);
 
24
 
25
- $url=$this->geturl($_SESSION['secret_ga'] ,$issuer,$email);
26
- mo2f_configure_google_authenticator_onprem( $_SESSION['secret_ga'] ,$url,$otpcode );
 
 
 
 
27
 
28
  }
29
 
11
 
12
  $user=wp_get_current_user();
13
  $user_id=$user->ID;
14
+ // if(!isset($_SESSION)){
15
+ // session_start();
16
+ // }
17
+ // if(!isset($_SESSION['secret_ga'])){
18
+ // $_SESSION['secret_ga'] = $this->createSecret();
19
+ // }
20
+ if(isset($_POST) && isset($_POST['mo2f_session_id'])){
21
+ $session_id_encrypt = sanitize_text_field($_POST['mo2f_session_id']);
22
+ }else{
23
+ $pass2fa_login_session = new Miniorange_Password_2Factor_Login();
24
+ $session_id_encrypt = $pass2fa_login_session->create_session();
25
  }
26
+ $secret_ga = MO2f_Utility::mo2f_retrieve_user_temp_values( 'secret_ga',$session_id_encrypt );
27
+ if(empty($secret_ga)){
28
+ $secret_ga = $this->createSecret();
29
+ MO2f_Utility::set_user_values($session_id_encrypt, 'secret_ga', $secret_ga);
30
  }
31
+
32
+
33
  $issuer=get_option('mo2f_google_appname', 'miniOrangeAu');
34
  $email=$user->user_email;
35
 
36
+ // $otpcode=$this->getCode($_SESSION['secret_ga']);
37
+ $otpcode=$this->getCode($secret_ga);
38
 
39
+ // $url=$this->geturl($_SESSION['secret_ga'] ,$issuer,$email);
40
+ $url=$this->geturl($secret_ga ,$issuer,$email);
41
+ // mo2f_configure_google_authenticator_onprem( $_SESSION['secret_ga'] ,$url,$otpcode );
42
+ echo '<div class="mo_wpns_setting_layout">';
43
+ mo2f_configure_google_authenticator_onprem( $secret_ga ,$url,$otpcode, $session_id_encrypt );
44
+ echo '</div>';
45
 
46
  }
47
 
handler/twofa/setup_twofa.php CHANGED
@@ -685,39 +685,63 @@ function mo2f_show_2FA_configuration_screen( $user, $selected2FAmethod ) {
685
  $obj->mo_GAuth_get_details();
686
  }
687
  else{
688
- Miniorange_Authentication::mo2f_get_GA_parameters($user);
 
 
 
689
  mo2f_configure_google_authenticator( $user );
 
690
  }
691
  break;
692
  case "Authy Authenticator":
 
693
  mo2f_configure_authy_authenticator( $user );
 
694
  break;
695
  case "Security Questions":
 
696
  mo2f_configure_for_mobile_suppport_kba( $user );
 
697
  break;
698
  case "Email Verification":
 
699
  mo2f_configure_for_mobile_suppport_kba( $user );
 
700
  break;
701
  case "OTP Over SMS":
 
702
  mo2f_configure_otp_over_sms( $user );
 
703
  break;
704
  case "miniOrange Soft Token":
 
705
  mo2f_configure_miniorange_authenticator( $user );
 
706
  break;
707
  case "miniOrange QR Code Authentication":
 
708
  mo2f_configure_miniorange_authenticator( $user );
 
709
  break;
710
  case "miniOrange Push Notification":
 
711
  mo2f_configure_miniorange_authenticator( $user );
 
712
  break;
713
  case "OTP Over Email":
 
714
  mo2f_test_otp_over_email($user,$selected2FAmethod);
 
715
  break;
716
  case "OTP Over Telegram":
 
717
  mo2f_configure_otp_over_Telegram($user);
 
718
  break;
719
  case "OTP Over Whatsapp":
 
720
  mo2f_configure_otp_over_Whatsapp($user);
 
721
  break;
722
  }
723
 
685
  $obj->mo_GAuth_get_details();
686
  }
687
  else{
688
+ if(!get_user_meta($user->ID, 'mo2f_google_auth', true)){
689
+ Miniorange_Authentication::mo2f_get_GA_parameters($user);
690
+ }
691
+ echo '<div class="mo_wpns_setting_layout">';
692
  mo2f_configure_google_authenticator( $user );
693
+ echo '</div>';
694
  }
695
  break;
696
  case "Authy Authenticator":
697
+ echo '<div class="mo_wpns_setting_layout">';
698
  mo2f_configure_authy_authenticator( $user );
699
+ echo '</div>';
700
  break;
701
  case "Security Questions":
702
+ echo '<div class="mo_wpns_setting_layout">';
703
  mo2f_configure_for_mobile_suppport_kba( $user );
704
+ echo '</div>';
705
  break;
706
  case "Email Verification":
707
+ echo '<div class="mo_wpns_setting_layout">';
708
  mo2f_configure_for_mobile_suppport_kba( $user );
709
+ echo '</div>';
710
  break;
711
  case "OTP Over SMS":
712
+ echo '<div class="mo_wpns_setting_layout">';
713
  mo2f_configure_otp_over_sms( $user );
714
+ echo '</div>';
715
  break;
716
  case "miniOrange Soft Token":
717
+ echo '<div class="mo_wpns_setting_layout">';
718
  mo2f_configure_miniorange_authenticator( $user );
719
+ echo '</div>';
720
  break;
721
  case "miniOrange QR Code Authentication":
722
+ echo '<div class="mo_wpns_setting_layout">';
723
  mo2f_configure_miniorange_authenticator( $user );
724
+ echo '</div>';
725
  break;
726
  case "miniOrange Push Notification":
727
+ echo '<div class="mo_wpns_setting_layout">';
728
  mo2f_configure_miniorange_authenticator( $user );
729
+ echo '</div>';
730
  break;
731
  case "OTP Over Email":
732
+ echo '<div class="mo_wpns_setting_layout">';
733
  mo2f_test_otp_over_email($user,$selected2FAmethod);
734
+ echo '</div>';
735
  break;
736
  case "OTP Over Telegram":
737
+ echo '<div class="mo_wpns_setting_layout">';
738
  mo2f_configure_otp_over_Telegram($user);
739
+ echo '</div>';
740
  break;
741
  case "OTP Over Whatsapp":
742
+ echo '<div class="mo_wpns_setting_layout">';
743
  mo2f_configure_otp_over_Whatsapp($user);
744
+ echo '</div>';
745
  break;
746
  }
747
 
handler/twofa/two_fa_pass2login.php CHANGED
@@ -866,9 +866,10 @@ class Miniorange_Password_2Factor_Login {
866
  $user_id = MO2f_Utility::mo2f_retrieve_user_temp_values( 'mo2f_current_user_id',$session_id_encrypt );
867
  $current_user = get_user_by('id',$user_id);
868
  $redirect_to = isset( $_POST['redirect_to'] ) ? esc_url_raw($_POST['redirect_to']) : null;
869
- $mo2f_google_auth=json_decode(get_user_meta($user_id,'mo2f_google_auth', true),true);
870
- $mo2f_google_auth = isset($mo2f_google_auth) ?$mo2f_google_auth : null;
871
- $ga_secret = $mo2f_google_auth != null ? $mo2f_google_auth['ga_secret'] : null;
 
872
  $mo2fa_login_message = '';
873
  $mo2fa_login_status = 'MO_2_FACTOR_PROMPT_USER_FOR_2FA_METHODS';
874
  if(MO2f_Utility::mo2f_check_number_length($otpToken)){
@@ -894,7 +895,6 @@ class Miniorange_Password_2Factor_Login {
894
  }
895
  update_user_meta($current_user->ID,'mo2f_external_app_type','GOOGLE AUTHENTICATOR');
896
  $mo2fa_login_status = 'MO_2_FACTOR_SETUP_SUCCESS';
897
- unset($_SESSION['mo2f_google_auth']);
898
  }else{
899
  $mo2fa_login_message = __('An error occured while processing your request. Please Try again.','miniorange-2-factor-authentication');
900
  }
@@ -925,9 +925,6 @@ class Miniorange_Password_2Factor_Login {
925
  } else {
926
  global $Mo2fdbQueries;
927
  $this->miniorange_pass2login_start_session();
928
- unset($_SESSION['mo2f_google_auth']);
929
- unset($_SESSION['mo2f_authy_keys']);
930
- unset($_SESSION['secret_ga']);
931
  $session_id_encrypt = isset( $_POST['session_id'] ) ? sanitize_text_field($_POST['session_id']) : null;
932
  $user_id = MO2f_Utility::mo2f_retrieve_user_temp_values( 'mo2f_current_user_id',$session_id_encrypt );
933
  $redirect_to = isset( $_POST['redirect_to'] ) ? esc_url_raw($_POST['redirect_to']) : null;
@@ -1137,8 +1134,10 @@ function create_user_in_miniOrange($current_user_id,$email,$currentMethod)
1137
  $mo2f_google_auth = array();
1138
  $mo2f_google_auth['ga_qrCode'] = $url;
1139
  $mo2f_google_auth['ga_secret'] = $onpremise_secret;
1140
- $_SESSION['mo2f_google_auth'] = $mo2f_google_auth;
1141
- update_user_meta($current_user->ID,'mo2f_google_auth', json_encode($mo2f_google_auth));
 
 
1142
 
1143
  }else{
1144
  $current_user = get_userdata($currentUserId);
@@ -1166,8 +1165,10 @@ function create_user_in_miniOrange($current_user_id,$email,$currentMethod)
1166
  $mo2f_google_auth = array();
1167
  $mo2f_google_auth['ga_qrCode'] = $google_response['qrCodeData'];
1168
  $mo2f_google_auth['ga_secret'] = $google_response['secret'];
1169
- $_SESSION['mo2f_google_auth'] = $mo2f_google_auth;
1170
- update_user_meta( $current_user->ID, 'mo2f_google_auth', json_encode( $mo2f_google_auth ) );
 
 
1171
 
1172
  } else {
1173
  $mo2fa_login_message = __( 'Invalid request. Please register with miniOrange to configure 2 Factor plugin.', 'miniorange-2-factor-authentication' );
@@ -1787,12 +1788,27 @@ function create_user_in_miniOrange($current_user_id,$email,$currentMethod)
1787
  {
1788
  $mo2f_second_factor = 'GOOGLE AUTHENTICATOR';
1789
  }
1790
- else if($mo2f_second_factor != 'Email Verification')
1791
- $mo2f_second_factor = 'NONE';
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1792
  }else{
1793
  $mo2f_second_factor = mo2f_get_user_2ndfactor( $user );
1794
  }
1795
-
1796
  if ( $mo2f_second_factor == 'MOBILE AUTHENTICATION' ) {
1797
  $this->mo2f_pass2login_mobile_verification( $user, $redirect_to, $session_id );
1798
  } else if ( $mo2f_second_factor == 'PUSH NOTIFICATIONS' || $mo2f_second_factor == 'OUT OF BAND EMAIL' ) {
@@ -1801,7 +1817,7 @@ function create_user_in_miniOrange($current_user_id,$email,$currentMethod)
1801
  else if($mo2f_second_factor == 'Email Verification'){
1802
  $this->mo2f_pass2login_push_oobemail_verification( $user, $mo2f_second_factor, $redirect_to, $session_id );
1803
  }
1804
- else if ( $mo2f_second_factor == 'SOFT TOKEN' || $mo2f_second_factor == 'SMS' || $mo2f_second_factor == 'PHONE VERIFICATION' || $mo2f_second_factor == 'GOOGLE AUTHENTICATOR' ) {
1805
  $this->mo2f_pass2login_otp_verification( $user, $mo2f_second_factor, $redirect_to, $session_id );
1806
  } else if ( $mo2f_second_factor == 'KBA' ) {
1807
  $this->mo2f_pass2login_kba_verification( $user->ID, $redirect_to, $session_id );
@@ -2137,8 +2153,8 @@ function create_user_in_miniOrange($current_user_id,$email,$currentMethod)
2137
  $random_keys = array_rand($challenge_questions,2);
2138
  $challenge_ques1 = $challenge_questions[$random_keys[0]];
2139
  $challenge_ques2 = $challenge_questions[$random_keys[1]];
2140
- $questions[0] = array('question'=>$challenge_ques1);
2141
- $questions[1] = array('question'=>$challenge_ques2);
2142
  update_user_meta( $user_id, 'kba_questions_user', $questions );
2143
  $mo2fa_login_message = 'Please answer the following questions:';
2144
  $mo2fa_login_status = 'MO_2_FACTOR_CHALLENGE_KBA_AUTHENTICATION';
@@ -2271,13 +2287,14 @@ function create_user_in_miniOrange($current_user_id,$email,$currentMethod)
2271
  exit;
2272
 
2273
  case 'MO_2_FACTOR_CHALLENGE_KBA_AUTHENTICATION':
2274
- $kbaquestions = $this->mo2f_kbaquestions ? $this->mo2f_kbaquestions : MO2f_Utility::mo2f_retrieve_user_temp_values( 'mo_2_factor_kba_questions',$session_id_encrypt );
2275
  if(MO2F_IS_ONPREM){
2276
  $user_id = $this->mo2f_userID ? $this->mo2f_userID : MO2f_Utility::mo2f_retrieve_user_temp_values( 'mo2f_current_user_id',$session_id_encrypt );
2277
  $ques = get_user_meta( $user_id, 'kba_questions_user');
2278
  mo2f_get_kba_authentication_prompt($login_status, $login_message, $redirect_to, $session_id_encrypt, $ques[0] );
2279
  }
2280
  else{
 
2281
  mo2f_get_kba_authentication_prompt($login_status, $login_message, $redirect_to, $session_id_encrypt, $kbaquestions );
2282
  }
2283
  exit;
866
  $user_id = MO2f_Utility::mo2f_retrieve_user_temp_values( 'mo2f_current_user_id',$session_id_encrypt );
867
  $current_user = get_user_by('id',$user_id);
868
  $redirect_to = isset( $_POST['redirect_to'] ) ? esc_url_raw($_POST['redirect_to']) : null;
869
+ // $mo2f_google_auth=json_decode(get_user_meta($user_id,'mo2f_google_auth', true),true);
870
+ // $mo2f_google_auth = isset($mo2f_google_auth) ?$mo2f_google_auth : null;
871
+ // $ga_secret = $mo2f_google_auth != null ? $mo2f_google_auth['ga_secret'] : null;
872
+ $ga_secret = MO2f_Utility::mo2f_retrieve_user_temp_values( 'secret_ga',$session_id_encrypt );
873
  $mo2fa_login_message = '';
874
  $mo2fa_login_status = 'MO_2_FACTOR_PROMPT_USER_FOR_2FA_METHODS';
875
  if(MO2f_Utility::mo2f_check_number_length($otpToken)){
895
  }
896
  update_user_meta($current_user->ID,'mo2f_external_app_type','GOOGLE AUTHENTICATOR');
897
  $mo2fa_login_status = 'MO_2_FACTOR_SETUP_SUCCESS';
 
898
  }else{
899
  $mo2fa_login_message = __('An error occured while processing your request. Please Try again.','miniorange-2-factor-authentication');
900
  }
925
  } else {
926
  global $Mo2fdbQueries;
927
  $this->miniorange_pass2login_start_session();
 
 
 
928
  $session_id_encrypt = isset( $_POST['session_id'] ) ? sanitize_text_field($_POST['session_id']) : null;
929
  $user_id = MO2f_Utility::mo2f_retrieve_user_temp_values( 'mo2f_current_user_id',$session_id_encrypt );
930
  $redirect_to = isset( $_POST['redirect_to'] ) ? esc_url_raw($_POST['redirect_to']) : null;
1134
  $mo2f_google_auth = array();
1135
  $mo2f_google_auth['ga_qrCode'] = $url;
1136
  $mo2f_google_auth['ga_secret'] = $onpremise_secret;
1137
+ // $_SESSION['mo2f_google_auth'] = $mo2f_google_auth;
1138
+ MO2f_Utility::set_user_values($session_id_encrypt, 'secret_ga', $onpremise_secret);
1139
+ MO2f_Utility::set_user_values($session_id_encrypt, 'ga_qrCode', $url);
1140
+ // update_user_meta($current_user->ID,'mo2f_google_auth', json_encode($mo2f_google_auth));
1141
 
1142
  }else{
1143
  $current_user = get_userdata($currentUserId);
1165
  $mo2f_google_auth = array();
1166
  $mo2f_google_auth['ga_qrCode'] = $google_response['qrCodeData'];
1167
  $mo2f_google_auth['ga_secret'] = $google_response['secret'];
1168
+ // $_SESSION['mo2f_google_auth'] = $mo2f_google_auth;
1169
+ // update_user_meta( $current_user->ID, 'mo2f_google_auth', json_encode( $mo2f_google_auth ) );
1170
+ MO2f_Utility::set_user_values($session_id_encrypt, 'secret_ga', $mo2f_google_auth['ga_secret']);
1171
+ MO2f_Utility::set_user_values($session_id_encrypt, 'ga_qrCode', $mo2f_google_auth['ga_qrCode']);
1172
 
1173
  } else {
1174
  $mo2fa_login_message = __( 'Invalid request. Please register with miniOrange to configure 2 Factor plugin.', 'miniorange-2-factor-authentication' );
1788
  {
1789
  $mo2f_second_factor = 'GOOGLE AUTHENTICATOR';
1790
  }
1791
+ else if($mo2f_second_factor == 'Email Verification'){
1792
+ $mo2f_second_factor = 'Email Verification';
1793
+ }
1794
+ else if($mo2f_second_factor == 'OTP Over SMS'){
1795
+ $mo2f_second_factor = 'SMS';
1796
+ }
1797
+ else if($mo2f_second_factor == 'OTP Over Email'){
1798
+ $mo2f_second_factor = 'EMAIL';
1799
+ }
1800
+ elseif($mo2f_second_factor == 'miniOrange Soft Token'){
1801
+ $mo2f_second_factor = "SOFT TOKEN";
1802
+ }
1803
+ else if($mo2f_second_factor == "miniOrange Push Notification"){
1804
+ $mo2f_second_factor = "PUSH NOTIFICATIONS";
1805
+ }
1806
+ else if($mo2f_second_factor == "miniOrange QR Code Authentication"){
1807
+ $mo2f_second_factor = "MOBILE AUTHENTICATION";
1808
+ }
1809
  }else{
1810
  $mo2f_second_factor = mo2f_get_user_2ndfactor( $user );
1811
  }
 
1812
  if ( $mo2f_second_factor == 'MOBILE AUTHENTICATION' ) {
1813
  $this->mo2f_pass2login_mobile_verification( $user, $redirect_to, $session_id );
1814
  } else if ( $mo2f_second_factor == 'PUSH NOTIFICATIONS' || $mo2f_second_factor == 'OUT OF BAND EMAIL' ) {
1817
  else if($mo2f_second_factor == 'Email Verification'){
1818
  $this->mo2f_pass2login_push_oobemail_verification( $user, $mo2f_second_factor, $redirect_to, $session_id );
1819
  }
1820
+ else if ( $mo2f_second_factor == 'SOFT TOKEN' || $mo2f_second_factor == 'SMS' || $mo2f_second_factor == 'PHONE VERIFICATION' || $mo2f_second_factor == 'GOOGLE AUTHENTICATOR' || $mo2f_second_factor == 'OTP Over Telegram'|| $mo2f_second_factor == 'OTP Over Whatsapp' || $mo2f_second_factor == 'EMAIL' || $mo2f_second_factor == "OTP Over Email") {
1821
  $this->mo2f_pass2login_otp_verification( $user, $mo2f_second_factor, $redirect_to, $session_id );
1822
  } else if ( $mo2f_second_factor == 'KBA' ) {
1823
  $this->mo2f_pass2login_kba_verification( $user->ID, $redirect_to, $session_id );
2153
  $random_keys = array_rand($challenge_questions,2);
2154
  $challenge_ques1 = $challenge_questions[$random_keys[0]];
2155
  $challenge_ques2 = $challenge_questions[$random_keys[1]];
2156
+ $questions[0] = array('question'=>addslashes($challenge_ques1));
2157
+ $questions[1] = array('question'=>addslashes($challenge_ques2));
2158
  update_user_meta( $user_id, 'kba_questions_user', $questions );
2159
  $mo2fa_login_message = 'Please answer the following questions:';
2160
  $mo2fa_login_status = 'MO_2_FACTOR_CHALLENGE_KBA_AUTHENTICATION';
2287
  exit;
2288
 
2289
  case 'MO_2_FACTOR_CHALLENGE_KBA_AUTHENTICATION':
2290
+
2291
  if(MO2F_IS_ONPREM){
2292
  $user_id = $this->mo2f_userID ? $this->mo2f_userID : MO2f_Utility::mo2f_retrieve_user_temp_values( 'mo2f_current_user_id',$session_id_encrypt );
2293
  $ques = get_user_meta( $user_id, 'kba_questions_user');
2294
  mo2f_get_kba_authentication_prompt($login_status, $login_message, $redirect_to, $session_id_encrypt, $ques[0] );
2295
  }
2296
  else{
2297
+ $kbaquestions = $this->mo2f_kbaquestions ? $this->mo2f_kbaquestions : MO2f_Utility::mo2f_retrieve_user_temp_values( 'mo_2_factor_kba_questions',$session_id_encrypt );
2298
  mo2f_get_kba_authentication_prompt($login_status, $login_message, $redirect_to, $session_id_encrypt, $kbaquestions );
2299
  }
2300
  exit;
handler/twofa/two_fa_settings.php CHANGED
@@ -1828,7 +1828,8 @@ class Miniorange_Authentication {
1828
 
1829
  update_user_meta( $user->ID, 'mo2f_external_app_type', "Google Authenticator" );
1830
  mo2f_display_test_2fa_notification($user);
1831
- unset($_SESSION['secret_ga']);
 
1832
 
1833
  } else {
1834
  update_option( 'mo2f_message', Mo2fConstants:: langTranslate( "ERROR_DURING_PROCESS" ) );
@@ -2064,7 +2065,8 @@ class Miniorange_Authentication {
2064
  $kba_ans_2 = sanitize_text_field( $_POST['mo2f_answer_2'] );
2065
  }
2066
  //if the php session folder has insufficient permissions, temporary options to be used
2067
- $kba_questions = isset( $_SESSION['mo_2_factor_kba_questions'] ) && ! empty( $_SESSION['mo_2_factor_kba_questions'] ) ? $_SESSION['mo_2_factor_kba_questions'] : get_option( 'kba_questions' );
 
2068
 
2069
  $kbaAns = array();
2070
  if(!MO2F_IS_ONPREM){
@@ -2074,13 +2076,14 @@ class Miniorange_Authentication {
2074
  $kbaAns[3] = $kba_ans_2;
2075
  }
2076
  //if the php session folder has insufficient permissions, temporary options to be used
2077
- $mo2f_transactionId = isset( $_SESSION['mo2f_transactionId'] ) && ! empty( $_SESSION['mo2f_transactionId'] ) ? $_SESSION['mo2f_transactionId'] : get_option( 'mo2f_transactionId' );
 
2078
  $kba_validate = new Customer_Setup();
2079
  $kba_validate_response = json_decode( $kba_validate->validate_otp_token( 'KBA', null, $mo2f_transactionId, $kbaAns, get_option( 'mo2f_customerKey' ), get_option( 'mo2f_api_key' ) ), true );
2080
  if ( json_last_error() == JSON_ERROR_NONE ) {
2081
  if ( strcasecmp( $kba_validate_response['status'], 'SUCCESS' ) == 0 ) {
2082
- unset( $_SESSION['mo_2_factor_kba_questions'] );
2083
- unset( $_SESSION['mo2f_transactionId'] );
2084
  delete_option('mo2f_transactionId');
2085
  delete_option('kba_questions');
2086
  update_option( 'mo2f_message', Mo2fConstants:: langTranslate( "COMPLETED_TEST" ) );
@@ -2846,8 +2849,9 @@ class Miniorange_Authentication {
2846
 
2847
  $questions[0] = $response['questions'][0];
2848
  $questions[1] = $response['questions'][1];
2849
- $_SESSION['mo_2_factor_kba_questions'] = $questions;
2850
- update_option( 'kba_questions', $questions );
 
2851
 
2852
  update_option( 'mo2f_message', Mo2fConstants:: langTranslate( "ANSWER_SECURITY_QUESTIONS" ) );
2853
  $this->mo_auth_show_success_message();
@@ -3098,9 +3102,9 @@ class Miniorange_Authentication {
3098
  delete_user_meta( $user->ID, 'test_2FA' );
3099
  delete_user_meta( $user->ID, 'configure_2FA' );
3100
 
3101
- if(isset($_SESSION['secret_ga'])){
3102
- unset($_SESSION['secret_ga']);
3103
- }
3104
  }
3105
  }
3106
 
@@ -3342,7 +3346,8 @@ class Miniorange_Authentication {
3342
  $mo2f_google_auth = array();
3343
  $mo2f_google_auth['ga_qrCode'] = $google_response['qrCodeData'];
3344
  $mo2f_google_auth['ga_secret'] = $google_response['secret'];
3345
- $_SESSION['mo2f_google_auth'] = $mo2f_google_auth;
 
3346
  }else {
3347
  update_option( 'mo2f_message', Mo2fConstants:: langTranslate( "ERROR_DURING_USER_REGISTRATION" ) );
3348
  do_action('mo_auth_show_error_message');
1828
 
1829
  update_user_meta( $user->ID, 'mo2f_external_app_type', "Google Authenticator" );
1830
  mo2f_display_test_2fa_notification($user);
1831
+ // unset($_SESSION['secret_ga']);
1832
+ delete_user_meta($user->ID, 'mo2f_google_auth');
1833
 
1834
  } else {
1835
  update_option( 'mo2f_message', Mo2fConstants:: langTranslate( "ERROR_DURING_PROCESS" ) );
2065
  $kba_ans_2 = sanitize_text_field( $_POST['mo2f_answer_2'] );
2066
  }
2067
  //if the php session folder has insufficient permissions, temporary options to be used
2068
+ // $kba_questions = isset( $_SESSION['mo_2_factor_kba_questions'] ) && ! empty( $_SESSION['mo_2_factor_kba_questions'] ) ? $_SESSION['mo_2_factor_kba_questions'] : get_option( 'kba_questions' );
2069
+ $kba_questions = get_user_meta($user->ID, 'mo_2_factor_kba_questions', true);
2070
 
2071
  $kbaAns = array();
2072
  if(!MO2F_IS_ONPREM){
2076
  $kbaAns[3] = $kba_ans_2;
2077
  }
2078
  //if the php session folder has insufficient permissions, temporary options to be used
2079
+ // $mo2f_transactionId = isset( $_SESSION['mo2f_transactionId'] ) && ! empty( $_SESSION['mo2f_transactionId'] ) ? $_SESSION['mo2f_transactionId'] : get_option( 'mo2f_transactionId' );
2080
+ $mo2f_transactionId = get_option('mo2f_transactionId');
2081
  $kba_validate = new Customer_Setup();
2082
  $kba_validate_response = json_decode( $kba_validate->validate_otp_token( 'KBA', null, $mo2f_transactionId, $kbaAns, get_option( 'mo2f_customerKey' ), get_option( 'mo2f_api_key' ) ), true );
2083
  if ( json_last_error() == JSON_ERROR_NONE ) {
2084
  if ( strcasecmp( $kba_validate_response['status'], 'SUCCESS' ) == 0 ) {
2085
+ // unset( $_SESSION['mo_2_factor_kba_questions'] );
2086
+ // unset( $_SESSION['mo2f_transactionId'] );
2087
  delete_option('mo2f_transactionId');
2088
  delete_option('kba_questions');
2089
  update_option( 'mo2f_message', Mo2fConstants:: langTranslate( "COMPLETED_TEST" ) );
2849
 
2850
  $questions[0] = $response['questions'][0];
2851
  $questions[1] = $response['questions'][1];
2852
+ // $_SESSION['mo_2_factor_kba_questions'] = $questions;
2853
+ update_user_meta($user->ID, 'mo_2_factor_kba_questions', $questions);
2854
+ // update_option( 'kba_questions', $questions );
2855
 
2856
  update_option( 'mo2f_message', Mo2fConstants:: langTranslate( "ANSWER_SECURITY_QUESTIONS" ) );
2857
  $this->mo_auth_show_success_message();
3102
  delete_user_meta( $user->ID, 'test_2FA' );
3103
  delete_user_meta( $user->ID, 'configure_2FA' );
3104
 
3105
+ // if(isset($_SESSION['secret_ga'])){
3106
+ // unset($_SESSION['secret_ga']);
3107
+ // }
3108
  }
3109
  }
3110
 
3346
  $mo2f_google_auth = array();
3347
  $mo2f_google_auth['ga_qrCode'] = $google_response['qrCodeData'];
3348
  $mo2f_google_auth['ga_secret'] = $google_response['secret'];
3349
+ // $_SESSION['mo2f_google_auth'] = $mo2f_google_auth;
3350
+ update_user_meta($user->ID, 'mo2f_google_auth', $mo2f_google_auth);
3351
  }else {
3352
  update_option( 'mo2f_message', Mo2fConstants:: langTranslate( "ERROR_DURING_USER_REGISTRATION" ) );
3353
  do_action('mo_auth_show_error_message');
helper/constants.php CHANGED
@@ -11,7 +11,7 @@
11
  const ERR_403 = "403";
12
  const DEFAULT_CUSTOMER_KEY = "16555";
13
  const DEFAULT_API_KEY = "fFd2XcvTGDemZvbw1bcUesNJWEqKbbUq";
14
- const DB_VERSION = 153;
15
  const DB_FEATURE_MAIL = 1;
16
  const SUPPORT_EMAIL = 'info@xecurify.com';
17
  const REAL_TIME_IP_HOST = 'https://firewall.xecurify.com/';
11
  const ERR_403 = "403";
12
  const DEFAULT_CUSTOMER_KEY = "16555";
13
  const DEFAULT_API_KEY = "fFd2XcvTGDemZvbw1bcUesNJWEqKbbUq";
14
+ const DB_VERSION = 154;
15
  const DB_FEATURE_MAIL = 1;
16
  const SUPPORT_EMAIL = 'info@xecurify.com';
17
  const REAL_TIME_IP_HOST = 'https://firewall.xecurify.com/';
miniorange_2_factor_settings.php CHANGED
@@ -3,7 +3,7 @@
3
  * Plugin Name: miniOrange 2 Factor Authentication
4
  * Plugin URI: https://miniorange.com
5
  * Description: This plugin provides various two-factor authentication methods as an additional layer of security after the default wordpress login. We Support Google/Authy/LastPass Authenticator, QR Code, Push Notification, Soft Token and Security Questions(KBA) for 3 User in the free version of the plugin.
6
- * Version: 5.4.28
7
  * Author: miniOrange
8
  * Author URI: https://miniorange.com
9
  * Text Domain: miniorange-2-factor-authentication
@@ -15,7 +15,7 @@
15
 
16
  define( 'MO_HOST_NAME', 'https://login.xecurify.com' );
17
 
18
- define( 'MO2F_VERSION', '5.4.28' );
19
  define('MO2F_PLUGIN_URL', (plugin_dir_url(__FILE__)));
20
  define( 'MO2F_TEST_MODE', false );
21
  define( 'MO2F_IS_ONPREM', get_option('is_onprem'));
3
  * Plugin Name: miniOrange 2 Factor Authentication
4
  * Plugin URI: https://miniorange.com
5
  * Description: This plugin provides various two-factor authentication methods as an additional layer of security after the default wordpress login. We Support Google/Authy/LastPass Authenticator, QR Code, Push Notification, Soft Token and Security Questions(KBA) for 3 User in the free version of the plugin.
6
+ * Version: 5.4.29
7
  * Author: miniOrange
8
  * Author URI: https://miniorange.com
9
  * Text Domain: miniorange-2-factor-authentication
15
 
16
  define( 'MO_HOST_NAME', 'https://login.xecurify.com' );
17
 
18
+ define( 'MO2F_VERSION', '5.4.29' );
19
  define('MO2F_PLUGIN_URL', (plugin_dir_url(__FILE__)));
20
  define( 'MO2F_TEST_MODE', false );
21
  define( 'MO2F_IS_ONPREM', get_option('is_onprem'));
readme.txt CHANGED
@@ -1,1535 +1,1509 @@
1
- === Google Authenticator - WordPress Two Factor Authentication (2FA , MFA) ===
2
-
3
- Contributors: cyberlord92, twofactor, hsn97
4
- Tags: google authenticator, two factor authentication, two factor, 2FA, two-step verification, mobile verification, OTP, mobile verification, two factor, Two step verification, TFA, MFA, 2 factor authentication, Remember Device, OTP,WordPress otp, two step authentication,Clef,SMS, email, signup security, two factor auth, Mobile Authentication, strong authentication, 2 step authentication, mobile verification,Multifactor authentication, passwordless login, one time passcode, soft token Authentication, QR Code Authentication, email verification, KBA, Security Questions,2FA, login OTP, login with SMS, mobile login, phone login, OTP login, mobile verification,knowledge based authentication,authy, authy two factor,yubico,Two-Factor Authentication,WordPress otp, security,user security, ​Twilio WordPress, SMS gateway, Solutions Infini, Clickatell, BulkSMS, MSG91, Nexmo, SMS Country, message, woocommerce, website security, login security, multi factor authentication, multi factor,wordfence, IP Blocking, IP Whitelisting, login Audits, woocommerce, SMS login, passwordless login, auth, login with OTP WordPress, OTP Over SMS and Email, two-step authentication, Mobile Authentication, passwordless login, login without password, passwordless authentication, secure login, temporary login, temporary access, one time passcode, email verification, security, website security, login security, multi-factor authentication, woocommerce, smartphone, WordPress otp, register with OTP, user OTP verification, SMS OTP, OTP Email, registration with OTP verification, registration verification,smartphone authentication
5
- Donate link: https://miniorange.com/
6
- Requires at least: 3.0.1
7
- Tested up to: 5.6
8
- Requires PHP: 5.3.0
9
- Stable tag: 5.4.28
10
- License: GPLv2 or later
11
- License URI: http://www.gnu.org/licenses/gpl-2.0.html
12
-
13
- Google Authenticator, Two Factor Authentication (2 Factor), OTP verificaion - SMS and Email, Apps like Microsoft, Duo, LastPass & more on login and Registration for all forms. Google AUthenticator also Supports QR Code, Push Notification and Security Questions along with the Google Authenticator itself.
14
-
15
- == Description ==
16
-
17
- Google Authenticator - Two Factor Authentication (2FA) plugin provides a completely Secure login to your WordPress website. Google Authenticator- Two Factor Authentication (2FA) is a FREE, Simple & very easy to setup plugin. Google Authenticator provides two factor authentication (2FA, MFA) whenever login to your WordPress website ensuring no unauthorised access to your website. Google Authenticator can be configured for any TOTP based Authentication Method for providing addtional layer of security of Two Factor Authentication.
18
-
19
- = User Identity Verification or OTP Verification =
20
- Login and Registration: Verify users on login and Registration with different authentication methods like Google Authenticator, SMS Verification, Email, Authy Authenticator, Duo Authenticator, Microsoft Authenticator, TOTP Based Authenticator, Security Questions and many others. Easy OTP Verification with SMS Verification and Email Verification.
21
-
22
- = Google Authenticator and other 2 Factor ( 2FA ) sync on multiple websites =
23
- You would not need to configure Google Authenticator and other Two Factor Authentication ( 2FA ) methods from second site onword. Just login with miniOrange account and your 2FA will automatically get set. This is available for Google Authenticator, Duo Authenticator, Microsoft Authenticator, Securty Questions, LastPass, Authy, miniOrange methods, OTP over SMS, OTP over Email. It is supported only if you are using our cloud services of 2 Factor.
24
-
25
- == Plugin Integrations and Support for all methods of two factor like Google Authenticator ==
26
- * [Woocommerce](https://wordpress.org/plugins/woocommerce/) (Login Woocommerce using Google Authenticator - Two Factor Authentication (2FA))
27
- * [BuddyPress form](https://wordpress.org/plugins/buddypress/) (Login BuddyPress using Google Authenticator - Two Factor Authentication (2FA))
28
- * [bbpress form](https://wordpress.org/plugins/bbpress/) (Login bbpress using Google Authenticator - Two Factor Authentication (2FA))
29
- * [Digimember](https://digimember.com/) (Login Digimember using Google Authenticator - Two Factor Authentication (2FA))
30
- * [Paid Memberships Pro](https://wordpress.org/plugins/paid-memberships-pro/) (Login Paid Memberships Pro using Google Authenticator - Two Factor Authentication (2FA))
31
- * [Memberpress Pro](https://memberpress.com/) (Login Memberpress Pro using Google Authenticator - Two Factor Authentication (2FA))
32
- * [Ultimate Member – User Profile & Membership Form](https://wordpress.org/plugins/ultimate-member/) (Login Ultimate Member – User Profile & Membership using Google Authenticator - Two Factor Authentication (2FA))
33
- * [LearnDash](https://www.learndash.com/) (Login LearnDash using Google Authenticator - Two Factor Authentication (2FA))
34
- * [LearnPress](https://wordpress.org/plugins/learnpress/) (Login LearnPress using Google Authenticator - Two Factor Authentication (2FA))
35
- * [LifterLMS](https://wordpress.org/plugins/lifterlms/) (Login LifterLMS using Google Authenticator - Two Factor Authentication (2FA))
36
- * [Dokan](https://wordpress.org/plugins/dokan-lite/) (Login Dokan using Google Authenticator - Two Factor Authentication (2FA))
37
- * And many more
38
-
39
- == WordPress login and registration forms support and integration for all methods of two factor authentication like Google Authenticator ==
40
- * [Restrict Content Pro Form](https://wordpress.org/plugins/restrict-content/) (Register and Login Restrict Content Pro using Google Authenticator - Two Factor Authentication (2FA))
41
- * [My theme Login Form](https://wordpress.org/plugins/theme-my-login/) (Login My theme Login using Google Authenticator - Two Factor Authentication (2FA))
42
- * [User Registration – Custom Registration Form](https://wordpress.org/plugins/bbpress/) (Register and Login User Registration – Custom Registration using Google Authenticator - Two Factor Authentication (2FA))
43
- * [Custom Login Page Customizer Form](https://wordpress.org/plugins/loginpress/) (Login Custom Login Page Customizer using Google Authenticator - Two Factor Authentication (2FA))
44
- * [Admin Custom Login Form](https://wordpress.org/plugins/admin-custom-login/) (Login Admin Custom Login using Google Authenticator - Two Factor Authentication (2FA))
45
- * [RegistrationMagic – Custom Registration Forms](https://wordpress.org/plugins/custom-registration-form-builder-with-submission-manager/) (Register and Login RegistrationMagic – Custom Registration using Google Authenticator - Two Factor Authentication (2FA))
46
- * And many more
47
-
48
- = Third Party Custom SMS Gateway =
49
- Premium plugin supports any third party custom SMS Gateway. If you don't have your own SMS gateway you can use miniOrange gateway. Send SMS all over the world.
50
- * Some Famous Gateways Supported:
51
- * Twilio : [Twilio](https://www.twilio.com/)
52
- * Clickatell : [Clickatell](https://www.clickatell.com/)
53
- * ClickSend : [ClickSend](https://www.clicksend.com/)
54
- * SendGrid : [SendGrid](https://sendgrid.com/)
55
- * Plivo : [Plivo](https://www.plivo.com/)
56
- * GatewayApi : [GatewayApi](https://gatewayapi.com/)
57
-
58
- Others not listed gateway can be tested on our site, Test your Gateway: [Custom Gateway](https://login.xecurify.com/moas/login?redirectUrl=https://login.xecurify.com/moas/admin/customer/smsconfig)
59
-
60
- = All Registartion Forms Supported =
61
- Google Authenticator - Two factor authentication( 2 Factor ) is available for all Forms. You can enable OTP Verification on all Registration forms and Google Authenticator, Security Questions, Prevent Account Sharing, Push Notifications on all the Login forms to verify users. Use this shortcode for Registration([mo2f_enable_register]). Settings in <b>Two Factor -> Registration Forms</b>.
62
-
63
-
64
- = FREE Plugin Features =
65
- * Simplified & easy user interface to setup Google Authenticator and other Two Factor Authentication ( 2FA ) methods.
66
- * Google Authenticator - Two Factor Authentication (2FA) for **3 User** forever FREE!
67
- * **Variety of Two Factor Authentication Methods:** Any App supporting TOTP algorithm like Google Authenticator, Authy Authenticator, LastPass Authenticator, Microsoft Authenticator, QR Code, Push Notification, Soft Token and Security Questions(KBA)
68
- * Includes Language Translation Support. Supports a wide variety of languages for all methods of 2 factor like Google Authenticator
69
- * Passwordless login or login with phone number, supported for Google Authenticator and other 2 Factor authentication methods.
70
- * This plugin Supports standard TOTP + HOTP protocols for Authentication Methods. Any TOTP protocol based authenticator app can be configured using Google Authenticator option in the plugin.
71
- * Two Factor Authentication (2FA) allows authentication on login page itself for Google Authenticator & miniOrange Soft Token.
72
- * Brute force attack prevention & IP Blocking.
73
- * User login Monitorning with and without two-factor authentication(2FA)
74
- * RCP Login and Registration Suppport with all login 2 factor methods like Google Authenticator, OTP Over SMS, QR code Authentication, login with Email for Login.
75
- * OTP Verification of Ulimate Member Registartion form with methods like OTP Over SMS and Email, QR code Authentication.
76
- * Recovery codes in case you are locked out for all Two Factor Authentication (TFA) methods like Google Authenticator, SMS verification,
77
-
78
- = Standard Lite Plugin Features =
79
-
80
- * Google Authenticator - Two Factor Authentication (2FA) for all users and all user roles *( Site-based pricing )*
81
- * **Available Two Factor Authentication Methods:** Google Authenticator, Authy Authenticator, Microsoft Authenticator, LastPass Authenticator, Security Questions(KBA), OTP Over Email, OTP Over SMS, Email Verification. *( SMS credits need to be purchased as per the need)*
82
- * Includes language Translation Support. Supports wide variety of languages.
83
- * **Multiple Login Options:** Username + password + two-factor (or) Username + two-factor i.e. Passwordless login. [Guide](https://docs.miniorange.com/documentation/login-username-2nd-factor-2)
84
- * **Unlimitted Email transactions:** Unlimitted Email transactions with your SMTP server.
85
- * **Backup Method:** KBA(Security Questions) For all TFA methods like Google Authenticator, etc.
86
- * Multisite compatible.
87
- * User role based redirection after Login [Guide](https://docs.miniorange.com/documentation/custom-redirect-login-url), Customize account name in Google Authenticator app [Guide](https://docs.miniorange.com/documentation/google-authenticator-app-name)
88
- * Custom Security Questions (KBA) [Guide](https://docs.miniorange.com/documentation/custom-security-questions)
89
-
90
- = Premium Lite Plugin Features =
91
-
92
- * Google Authenticator - Two Factor Authentication (2FA) for all users and all user roles *( Site-based pricing )*
93
- * **Available Two Factor Authentication Methods:** Google Authenticator, Authy Authenticator, Microsoft Authenticator, LastPass Authenticator, Security Questions(KBA), OTP Over Email, OTP Over SMS, Email Verification, Mobile Verification. *( SMS credits need to be purchased as per the need)*
94
- * Includes language Translation Support. Supports wide variety of languages.
95
- * **Multiple Login Options:** Username + password + two-factor (or) Username + two-factor i.e. Passwordless login. [Guide](https://docs.miniorange.com/documentation/login-username-2nd-factor-2)
96
- * **Unlimitted Email transactions:** Unlimitted Email transactions with your SMTP server.
97
- * **Backup Method:** KBA(Security Questions) , OTP Over Email, Backup codes For all Two Factor Authentication ( TFA ) methods like Google Authenticator, etc.
98
- * Multisite compatible.
99
- * Two Factor Authentication ( TFA ) for Custom login forms like User Pro, login with ajax, Theme my login, etc with all authentication methods like Google Authenticator, mobile Verification with SMS, etc.
100
- * User role based redirection after Login [Guide](https://docs.miniorange.com/documentation/custom-redirect-login-url), Customize account name in Google Authenticator app [Guide](https://docs.miniorange.com/documentation/google-authenticator-app-name)
101
- * Custom Security Questions (KBA) [Guide](https://docs.miniorange.com/documentation/custom-security-questions)
102
- * Role based 2 Factor - Different 2 factor like Google Authenticator, OTP Over SMS and Email, Authy Authenticator, etc based on your role [Guide](https://docs.miniorange.com/documentation/specific-set-authentication-methods-based-role)*
103
- * Force Two factor for users [Guide](https://docs.miniorange.com/documentation/enforce-2fa-users)
104
- * Email notification to users asking them to set up Two Factor Authentication (2FA) [Guide](https://docs.miniorange.com/documentation/want-send-email-notification-users-setting-2-factor)
105
- * Set Privacy Policy for users [Guide](https://docs.miniorange.com/documentation/privacy-policy-site)
106
- * App Specific Password to login from mobile Apps
107
- * Remember Device for all methods like Google Authenticator, Mobile verification with SMS, etc [Guide](https://docs.miniorange.com/documentation/remember-my-device)
108
- * **Add-Ons Included:** RBA & Trusted Devices Management Add-on, Personalization Add-on and Short Codes Add-on
109
-
110
-
111
- = Standard Plugin Features =
112
-
113
- * Google Authenticator - Two Factor Authentication (2FA) for Users as per the upgrade *( User-based pricing )*
114
- * **Available Authentication Methods:** Google Authenticator, Authy Authenticator, Microsoft Authenticator, LastPass Authenticator, QR Code, Push Notification, Soft Token, Security Questions(KBA), OTP Over Email, OTP Over SMS, OTP Over SMS and Email, Email Verification. *( SMS credits need to be purchased as per the need)*
115
- * Includes language Translation Support. Supports wide variety of languages.
116
- * **Multiple Login Options:** Username + password + two-factor (or) Username + two-factor i.e. Passwordless login. [Guide](https://docs.miniorange.com/documentation/login-username-2nd-factor-2)
117
- * **Backup Method:** KBA(Security Questions)
118
- * Multisite compatible.
119
- * User role based redirection after Login [Guide](https://docs.miniorange.com/documentation/custom-redirect-login-url), Customize account name in Google Authenticator app [Guide](https://docs.miniorange.com/documentation/google-authenticator-app-name)
120
- * Custom Security Questions (KBA) [Guide](https://docs.miniorange.com/documentation/custom-security-questions)
121
-
122
- = Premium Plugin Features =
123
-
124
- * Google Authenticator - Two Factor Authentication (2FA) for Users as per the upgrade *( User-based pricing )*
125
- * **Available Authentication Methods:** Google Authenticator, Authy Authenticator, Microsoft Authenticator, LastPass Authenticator, QR Code, Push Notification, Soft Token, Security Questions(KBA), OTP Over Email, OTP Over SMS, OTP Over SMS and Email, Email Verification, Hardware Token, Whatsapp based 2fa(Add-on), Telegram Based 2fa. *( SMS and Email credits need to be purchased as per the need)*
126
- * Language Translation Support
127
- * **Multiple Login Options:** Username + password + two-factor (or) Username + two-factor i.e. Passwordless login [Guide](https://docs.miniorange.com/documentation/login-username-2nd-factor-2)
128
- * **Backup Methods:** KBA(Security Questions), OTP Over Email, Backup Codes [Guide](https://docs.miniorange.com/documentation/want-configure-backup-methods-users-can-configure-case-locked-site-not-able-log)
129
- * Multisite compatible.
130
- * Force Two factor authentication for users [Guide](https://docs.miniorange.com/documentation/enforce-2fa-users)
131
- * Email notification to users asking them to set up Two Factor Authentication (2FA) [Guide](https://docs.miniorange.com/documentation/want-send-email-notification-users-setting-2-factor)
132
- * User role based redirection after Login [Guide](https://docs.miniorange.com/documentation/custom-redirect-login-url), Custom Security Questions (KBA) [Guide](https://docs.miniorange.com/documentation/custom-security-questions), Customize account name in Google Authenticator app [Guide](https://docs.miniorange.com/documentation/google-authenticator-app-name).
133
- * Enable Google Authenticator - Two Factor Authentication (2FA) for specific Users/User Roles [Guide](https://docs.miniorange.com/documentation/enable-two-factor-based-roles)
134
- * Choose specific two factor authentication methods for Users [Guide](https://docs.miniorange.com/documentation/specific-set-authentication-methods-based-role)
135
- * Set Privacy Policy for users [Guide](https://docs.miniorange.com/documentation/privacy-policy-site)
136
- * App Specific Password to login from mobile Apps
137
- * Remember Device to skip the two factor authentication( 2FA ) for trusted devices [Guide](https://docs.miniorange.com/documentation/remember-my-device)
138
- * **Add-Ons Included:** RBA & Trusted Devices Management Add-on, Personalization Add-on and Short Codes Add-on
139
-
140
- = Enterprise Plugin Features =
141
-
142
- * Google Authenticator - Two Factor Authentication (2FA) for Users as per the upgrade *( User-based pricing )*
143
- * **Available Authentication Methods:** Google Authenticator, Authy Authenticator, Microsoft Authenticator, LastPass Authenticator, QR Code, Push Notification, Soft Token, Security Questions(KBA), OTP Over Email, OTP Over SMS, OTP Over SMS and Email, Email Verification, Hardware Token. *( SMS and Email credits need to be purchased as per the need)*
144
- * Language Translation Support
145
- * **Multiple Login Options:** Username + password + two factor Authentication (or) Username + two factor authentication i.e. Passwordless login.
146
- * **Backup Methods:** KBA(Security Questions), OTP Over Email, Backup Codes
147
- * Multisite compatible.
148
- * Email notification to users asking them to set up Google Authenticator - Two Factor Authentication (2FA).
149
- * User role based redirection after Login, Custom Security Questions (KBA), Customize account name in Google Authenticator app.
150
- * Enable Two Factor Authentication (2FA) for specific Users/User Roles
151
- * Choose specific two factor authentication methods for Users
152
- * App Specific Password to login from mobile Apps
153
- * **Add-Ons Included:** RBA & Trusted Devices Management Add-on, Personalization Add-on and Short Codes Add-on
154
- * **Brute force attack prevention, IP Blocking & User login Monitorning. **
155
- * File protection & strong password
156
- * Monitorning current two factor authentication (2 Factor) method of all the users in the plugin.
157
- = PASSWORDLESS LOGIN =
158
- Passwordless login is a new way of login in which you and your users can login without entering the password. The login can be done by username and 2 factor or only username which can be decided based on the user role. If a role is not allowed for passwordless login they will login with password and username.
159
-
160
- == Prevent Account Sharing Between Users ==
161
- Many video sharing and E-learning platforms want to prevent sharing of account between the users. This can be done using miniOrange Two factor plugin (TFA) with methods like QR code Authentication , Mobile Verification, etc. Also, e-learning portals can use this to their advantage. It can be used on any websites which create and sell courses. It can be integrated with plugins like Learndash.
162
- Other sites like premium video content or any premium content where you want users not to share passwords between friends and Family then you can go for this solution. Multiple two factor authentication methods are supported to achieve prevent account sharing.
163
-
164
- = Additional Features other than the two factor authentication ( 2FA ) =
165
- * **Complete Web Security suite to protect wordpress from any attacks**
166
- * **Web Application Firewall (WAF) : Wordpress Firewall to protect your site**
167
- * **OWASP TOP 10 Protection**
168
- * **Login Protection : Spam and Login Protection**
169
- * **Malware scanner: Detects any virus, malware and trojan**
170
- * **Backup: Taking Encrypted Backup with local storage and cloud storage**
171
- * **Two Factor Authentication : 2FA and MFA**
172
- * **Limit Login Attempts to stop password guessing**
173
- * **Realtime Global IP Blocing**
174
- * **Limit Rate of Request : Protecting resources from any security hole exploit**
175
- * **Crawler Detection and blocking**
176
- * **Blocking IP and Attacks**
177
- * **Country Blocking and Browser Blocking**
178
- * **Brute Force Attacks prevention to stop password hack**
179
- * **Captcha for Bot Detection**
180
- * **Google Recaptcha**
181
- * **Login Form Protection**
182
- * **Registration Form Protection**
183
- * **Integration with different plugin - Woo commerce, buddypress, ultimate member and others**
184
- * **Reporting**
185
- * **Audit Log**
186
-
187
- Check all the features here: [miniOrange Website](https://security.miniorange.com/)
188
-
189
- = Why do you need to register? =
190
-
191
- miniOrange Two factor authentication Plugin (TFA) uses miniOrange APIs to communicate between your WP and miniOrange. To keep this communication secure, we ask you to register and assign you API keys specific to your account. This way your account and users calls can be only accessed by API keys assigned to you.
192
- Adding to this, you can also use the same account on multiple applications and your users do not have to maintain multiple accounts or 2 factor like Google Authenticator. Single code generated in Google Authenticator will be enough to login to all sites. With this you can also achieve sync of 2 factor authentication on multiple sites.
193
-
194
-
195
- = Add Ons [Applicable for Free and Standard Plans, Inclusive in the Premium Plan] =
196
-
197
- * RBA & Trusted Devices Management Add-on Features
198
- * Remember Device to skip the two factor authentication ( 2 Factor ) from the trusted devices.
199
- * Set Device Limit for the users to login
200
- * IP Restriction: Limit users to login from specific IPs
201
- * Personalization Add-on Features to customize your 2 factor authentication pages
202
- * Custom UI of Two Factor Authentication (2FA) popups
203
- * Custom Email and SMS Templates
204
- * Customize 'Powered by' Logo on two factor authentication page
205
- * Customize Plugin Icon
206
- * Customize Plugin Name
207
-
208
- * Short Codes Add-on Features
209
- * Option to turn on/off 2 factor (two factor authentication) by user
210
- * Option to configure the Google Authenticator and Security Questions by user
211
- * Option to 'Enable Remember Device' from a custom login form to skip 2 factor for trusted devices.
212
- * On-Demand ShortCodes for specific functionalities ( like for enabling 2FA (2 Factor authentication) for specific pages)
213
-
214
- = Apps Supported by the two factor authentication plugin =
215
- * Google Authenticator
216
- * miniOrange Authenticator
217
- * Duo Authenticator
218
- * Microsoft Authenticator
219
- * Authy 2 Factor Authenticator
220
- * LastPass Authenticator
221
- * FreeOTP Authenticator
222
-
223
- <h4>Useful blog posts about two factor authenticaion ( 2FA ) plugin </h4>
224
- *[Beginner’s Guide: How to Add Two Factor Authentication to WordPress](https://themeisle.com/blog/how-to-add-two-factor-authentication-to-wordpress/)
225
- *[How to Add WordPress Two Factor Authentication (2FA)](https://phppot.com/wordpress/how-to-add-wordpress-two-factor-authentication-2fa-using-google-authenticator-plugin/)
226
-
227
- Customized solutions and Active support is available. Email us at info@xecurify.com or call us at +1 9786589387.
228
-
229
- **Note: The plugin is GDPR Compliant and supports wide variety of Language Translation**
230
-
231
- == Installation ==
232
-
233
- = From your WordPress dashboard =
234
- 1. Navigate to `Plugins > Add New` from your WP Admin dashboard.
235
- 2. Search for `miniOrange 2 Factor Authentication`.
236
- 3. Install `miniOrange 2 Factor Authentication` and Activate the plugin.
237
-
238
- = From WordPress.org =
239
- 1. Search for `miniOrange 2 Factor Authentication` and download it.
240
- 2. Unzip and upload the `miniorange-2-factor-authentication` directory to your `/wp-content/plugins/` directory.
241
- 3. Activate miniOrange 2 Factor Authentication from the Plugins tab of your admin dashboard.
242
-
243
- = Once Activated =
244
- 1. Select miniOrange 2-Factor ( 2 factor authentication ) from the left menu and follow the instructions.
245
- 2. Once, you complete your setup. Click on Log Out button.
246
- 3. Enter the username and password. After the initial validation, you will be prompted for the 2-factor method you had set up.
247
- 4. Validate yourself with the 2-factor authentication method you configured.
248
-
249
- <b>Video Guide</b> :<br>
250
- <iframe width="560" height="315" src="https://www.youtube.com/embed/vVGXjedIaGs" frameborder="0" allow="accelerometer; autoplay; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
251
-
252
-
253
- == Frequently Asked Questions ==
254
-
255
- = How do I gain access to my website if I get locked out? =
256
-
257
- You can obtain access to your website by one of the below options:
258
-
259
- 1. If you have an additional administrator account whose Two Factor is not enabled yet, you can login with it.
260
- 2. If you had setup KBA questions earlier, you can use them as an alternate method to login to your website.
261
- 3. Rename the plugin from FTP - this disables the Two-Factor (2FA) plugin and you will be able to login with your Wordpress username and password.
262
-
263
- For detailed information, Please check on our website. <a href="https://faq.miniorange.com/knowledgebase/gain-access-to-website-if-locked-out/" target="_blank">Locked Out</a>.<br>
264
- You can also check our video Tutorial:
265
- <iframe width="560" height="315" src="https://www.youtube.com/embed/wLFKakQkpk8" frameborder="0" allow="accelerometer; autoplay; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
266
-
267
- = I want to enable Google Authenticator 2 Factor authentication as the backup method? =
268
-
269
- You can use google authenticator as the backup method for your specific user or all users in the premium version of the two factor authentication. [PREMIUM FEATURE]
270
-
271
- = I want to enable Two Factor Authentication (2FA) role wise ? =
272
-
273
- You can select the roles under Login Settings tab to enable the plugin role wise. [PREMIUM FEATURE]
274
-
275
- = I have enabled Two-Factor Authentication (2FA) for all users, what happens if an end user tries to login but has not yet registered ? =
276
-
277
- If a user has not setup Two-Factor yet, user has to register by inline registration that will be invoked during the login.
278
-
279
- = I want to enable only one authentication method for my users. What shloud I do? =
280
-
281
- You can select the two factor authentication methods under Login Settings tab. The selected authentication methods will be shown to the user during inline registration for example if you select Google Authenticator it will be shown on login. [PREMIUM FEATURE]
282
-
283
- = I am getting the fatal error of call to undefined function json_last_error(). What should I do? =
284
-
285
- Please check your php version. The plugin is supported in php version 5.3.0 or above. You need to upgrade your php version to 5.3.0 or above to use the plugin.
286
-
287
- = I did not recieve OTP while trying to register with miniOrange. What should I do? =
288
-
289
- The OTP is sent to your email address with which you have registered with miniOrange. If you can't see the email from miniOrange in your mails, please make sure to check your SPAM folder. If you don't see an email even in SPAM folder, please submit a query in our Support Section in the plugin or you can contact us at info@xecurify.com.
290
-
291
- = I want to configure 2nd factor by Google Authenticator. =
292
-
293
- Select the radio button next to Google Authenticator/Authy App and select the phone type and then scan the QR Code by Google Authenticator App. Enter the 6 digit code in the textbox and click on Save and verify buuton.
294
-
295
- = I want to configure 2nd factor by Authy 2-Factor Authentication App. =
296
-
297
- Select the radio button next to Google Authenticator/Authy App and select the phone type and then scan the QR Code by Authy 2-Factor Authentication App. Enter the 6 digit code from the Authy App into the textbox available and click on Save and Verifiy button.
298
-
299
- = I forgot the password of my miniOrange account. How can I reset it? =
300
-
301
- There are two cases according to the page you see -<br>
302
- 1. Login with miniOrange screen: You should click on forgot password link. You will get a new password on your email address with which you have registered with miniOrange . Now you can login with the new password.
303
-
304
- 2. Register with miniOrange screen: Enter your email ID and any random password in password and confirm password input box. This will redirect you to Login with miniOrange screen. Now follow first step.
305
-
306
- = I have a custom / front-end login page on my site and I want the look and feel to remain the same when I add 2 factor ? =
307
-
308
- If you have a custom login form other than wp-login.php then we will provide you the shortcode. Shortcode will work only for the customized login page created from wordpress plugins. We are not claiming that it will work with all the customized login page. In such case, custom work is needed to integrate two factor with your customized login page. You can submit a query in our <b>Support Section</b> in the plugin or you can contact us at info@xecurify.com for more details.
309
-
310
- = I have Woocommerce theme login page on my site. How can I enable Two Factor ? =
311
-
312
- If you have Woocommerce theme login then go to Advanced Options Tab and check Enable Two-Factor for Woocommerce Front End Login. If you need any help setting up 2-Factor for your Woocommerce theme login form, please submit a query in our Support Section in the plugin or you can contact us at info@xecurify.com.
313
-
314
- = I have installed plugins which limit the login attempts like Limit Login Attempt, Loginizer, Wordfence etc. Is there any incompatibilities with these kind of plugins? =
315
-
316
- The limit login attempt kind of plugins limit the number of login attempts and block the IP temporarily. So if you are using 2 factor along with these kind of plugins then you should increase the login attempts (minimum 5) so that you dont get locked out yourself.
317
-
318
- = If you are using any Security Plugin in WordPress like Simple Security Firewall, All in One WP Security Plugin and you are not able to login with Two-Factor. =
319
-
320
- Our Two-Factor plugin is compatible with most of the security plugins, but if it is not working for you. Please submit a query in our Support Section in the plugin or you can contact us at info@xecurify.com.
321
-
322
- = If you are using any render blocking javascript and css plugin like Async JS and CSS Plugin and you are not able to login with Two-Factor or your screen got blank. =
323
-
324
- If you are using Async JS and CSS Plugin. Please go to its settings and add jquery in the list of exceptions and save settings. It will work. If you are still not able to get it right, Please submit a query in our Support Section in the plugin or you can contact us at info@xecurify.com.
325
-
326
- = My users have different types of phones. What phones are supported? =
327
-
328
- We support all types of phones. Smart Phones, Basic Phones, Landlines, etc. Go to Setup Two-Factor Tab and select Two-Factor method of your choice from a range of 8 different options.
329
-
330
- = What if a user does not have a smart phone? =
331
-
332
- You can select OTP over SMS, Phone Call Verification or Email Verification as your Two-Factor method. All these methods are supported on basic phones.
333
-
334
- = What if a user does not have any phone? =
335
-
336
- You can select Email Verification or Security Questions (KBA) as your Two-Factor method.
337
-
338
- = What if I am trying to login from my phone ? =
339
-
340
- If your Security Questions (KBA) are configured then you will be asked to answer them when you are logging in from your phone.
341
-
342
- = I want to hide default login form and just want to show login with phone? =
343
-
344
- You should go to <b>Login Settings Tab</b> and check <b>Login with Phone Only</b> checkbox to hide the default login form.
345
-
346
-
347
- = My phone has no internet connectivity and configured 2nd factor with miniOrange App, how can I login? =
348
-
349
- You can login using our alternate login method. Please follow below steps to login:
350
-
351
- * Enter your username and click on login with your phone.
352
- * Click on <b>Phone is Offline?</b> button below QR Code.
353
- * You will see a textbox to enter one time passcode.
354
- * Open miniOrange Authenticator App and Go to Soft Token Tab.
355
- * Enter the one time passcode shown in miniOrange Authenticator App in textbox, just like Google authenticator.
356
- * Click on submit button to validate the otp.
357
- * Once you are authenticated, you will be logged in.
358
-
359
- = My phone is lost, stolen or discharged. How can I login? =
360
-
361
- You can login using our alternate login method. Click on the Forgot Phone link and you will get 2 alternate methods to login. Select "Send a one time passcode to my registered email" to authenticate by OTP over EMAIL or Select "Answer your Security Questions (KBA)" to authenticate by knowledge based authenticaion.
362
-
363
- = My phone has no internet connectivity and i am entering the one time passcode from miniOrange Authenticator App, it says Invalid OTP?
364
-
365
- Click on the <b>Settings Icon</b> on top right corner in <b>miniOrange Authenticator App</b> and then press <b>Sync button</b> under 'Time correction for codes' to sync your time with miniOrange Servers. If you still can't logged in then please email us at info@xecurify.com or <a href="https://miniorange.com/contact" target="_blank">Contact us</a>.Soft Token method is just like google authenticator method.
366
-
367
- = I want to go back to default login with password? =
368
-
369
- You should go to <b>Login Settings Tab</b> and uncheck <b>Enable Two-Factor plugin</b> checkbox. This will disable 2-Factor and you can login using wordpress default login.
370
-
371
- = I am upgrading my phone. =
372
-
373
- You should go to <b>Setup Two Factor</b> Tab and click on <b>Reconfigure</b> to reconfigure 2-Factor with your new phone.
374
-
375
- = What If I want to use any other second factor like OTP Over SMS, Security Questions, Device Id, etc ? =
376
-
377
- miniOrange authentication service has 15+ authentication methods.One time passcodes (OTP) over SMS, OTP over Email, OTP over SMS and Email, Out of Band SMS, Out of Band Email, Soft Token, Push Notification, USB based Hardware token (yubico), Security Questions, Mobile Authentication (QR Code Authentication), Voice Authentication (Biometrics), Phone Verification, Device Identification, Location, Time of Access User Behavior. To know more about authentication methods, please visit <a href="https://miniorange.com/strong_auth" target="_blank">https://miniorange.com/strong_auth </a>. If you want to have any other 2-factor for your WordPress site, please email us at info@xecurify.com or <a href="https://miniorange.com/contact" target="_blank">Contact us</a>.
378
-
379
- == Screenshots ==
380
-
381
- 1. Google Authenticator (2FA) - Setup different 2 Factor methods
382
- 2. Google Authenticator (2FA) - Test 2 factor configured
383
- 3. Google Authenticator (2FA) - 2 Factor Authentication methods available
384
- 4. Google Authenticator (2FA) - Google Authenticator login
385
- 5. Google Authenticator (2FA) - QR code 2 Factor login
386
- 6. Google Authenticator (2FA) - miniOrange Authenticator login
387
- 7. Google Authenticator (2FA) - Push notification login
388
- 8. Google Authenticator (2FA) - Remember device and personalization add-ons
389
-
390
- == Changelog ==
391
-
392
- = 5.4.28 =
393
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
394
- * New year sale update
395
-
396
- = 5.4.27 =
397
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
398
- * New year sale
399
- * WordPress 5.6 compatibility fix
400
- * WAF fixes
401
- * Real time IP blocking
402
- * IP based user login
403
- * New feature release notification
404
-
405
- = 5.4.26 =
406
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
407
- * Christmas Offer
408
-
409
- = 5.4.25 =
410
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
411
- * OTP over Telegram Fixes
412
-
413
- = 5.4.24 =
414
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
415
- * OTP over Whatsapp
416
- * OTP over Telegram
417
- * Feedback form changes
418
-
419
- = 5.4.23 =
420
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
421
- * Call support with technical team
422
- * Email and SMS transaction sync
423
- * Feedback form on network deactivate
424
- * Enable/Disable 2FA fix
425
- * 2FA added for superadmin role
426
-
427
- = 5.4.22 =
428
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
429
- * Backup Codes
430
- * Sanitization and JS improvements
431
- * SMS and Email Sync
432
- * Whatsapp based Two factor in Premium plugin
433
- * Telegram based Two factor in Premium plugin
434
-
435
- = 5.4.21 =
436
- * Google Authenticator - Two Factor Authentication (2FA, SMS) :
437
- * Sanitization of some input values.
438
-
439
- = 5.4.20 =
440
- * Google Authenticator - Two Factor Authentication (2FA, SMS) :
441
- * Google Authenticator Qr code fix.
442
- * My theme login Login fix.
443
-
444
- = 5.4.19 =
445
- * Google Authenticator - Two Factor Authentication (2FA, OTP) : Google Authenticator cloud fix.
446
-
447
- = 5.4.18 =
448
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
449
- *Added missing file
450
-
451
- = 5.4.17 =
452
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
453
- *Digimember Form Support
454
- *Memberpress Form Support
455
- *SMS Verification Support
456
- *OTP Verification on Woocommerce Registration
457
-
458
- = 5.4.16 =
459
- * Google Authenticator - Two Factor Authentication (2FA, OTP) : Quick form fix.
460
-
461
- = 5.4.15 =
462
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
463
- * Theme My Login plugin Support
464
- * Ultimate Memember Registration Support
465
- * Woocommerce Registration Support
466
- * Ultimate Memember Redirect
467
- * Restrict Content Pro Login and Registration
468
-
469
- = 5.4.14 =
470
- * Google Authenticator - Two Factor Authentication (2FA, OTP) : Performance improvement with fixes in Security Questions. And User Email verification and Phone Verification issues resolved.
471
-
472
- = 5.4.13 =
473
- * Google Authenticator - Two Factor Authentication (2FA, MFA) : Support Form Improvement.
474
-
475
- = 5.4.11 =
476
- * Google Authenticator - Two Factor Authentication (2FA, TFA) : Feedback Issue fix.
477
-
478
- = 5.4.9 =
479
- * Google Authenticator - Two Factor Authentication (2FA, MFA) : User Experience, new support form and Security disabled by default. Added New Methods for users to choose.
480
-
481
- = 5.4.8 =
482
- * Google Authenticator - Two Factor Authentication (2FA, TFA) : Learning Management System support, Microsoft Authenticator and Duo Authenticator support and restrict account sharing add-on.
483
- = 5.4.7 =
484
- * Google Authenticator - Two Factor Authentication (2FA) : Fixing warnings and adding minor changes in the plans.
485
-
486
- = 5.4.6 =
487
- * Google Authenticator - Two Factor Authentication (2FA) : Improving Google Authenticator and adding Payment options.
488
-
489
- = 5.4.5 =
490
- * Google Authenticator - Two Factor Authentication (2FA) : Security and MFA UI updates.
491
-
492
- = 5.4.4 =
493
- * Google Authenticator - Two Factor Authentication (2FA) : Two Factor : Woocommerce login page integration.
494
-
495
- = 5.4.3 =
496
- * Google Authenticator - Two Factor Authentication (2FA , Two Factor) : Session issue fix for customers using Two Factor.
497
-
498
- = 5.4.2 =
499
- * Google Authenticator - Two Factor Authentication (2FA) : Warning for cloud customer moving to on-premise Two factor.
500
-
501
- = 5.4.1 =
502
- * Google Authenticator - Two Factor Authentication (2FA) : Headers sent issue is security firewall.
503
-
504
- = 5.4.0 =
505
- * Google Authenticator - Two Factor Authentication (2FA) : Two Factor FAQ Fix and OTP code convinence.
506
-
507
- = 5.3.26 =
508
- * Google Authenticator - Two Factor Authentication (2FA) : Two Factor On-premise FAQ update.
509
-
510
- = 5.3.25 =
511
- * Google Authenticator - Two Factor Authentication (2FA) : Two Factor On-premise support form.
512
-
513
- = 5.3.24 =
514
- * Google Authenticator - Two Factor Authentication (2FA) : On-premise two factor released with multiple users support for some authentication methods.
515
-
516
- = 5.3.23 =
517
- * Google Authenticator - Two Factor Authentication (2FA) : Scanner : Timing and caching issue fix.
518
- * Disable 2fa on Woocommerce login.
519
- * Login with Username only fix.
520
-
521
- = 5.3.22 =
522
- * Google Authenticator - Two Factor Authentication (2FA) : Antivirus : Fixing Cache issues and adding nonce.
523
-
524
- = 5.3.21 =
525
- * Google Authenticator - Two Factor Authentication (2FA) : Two Factor : Choice between Two factor and Security.
526
-
527
- = 5.3.20 =
528
- * Google Authenticator - Two Factor Authentication (2FA) : Anti Malware : Fixing issue faced by users during scan.
529
-
530
- = 5.3.19 =
531
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Giving users choice of two factor.
532
-
533
- = 5.3.18 =
534
- * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus and Firewall : Fix Scan.
535
-
536
- = 5.3.17 =
537
- * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus : Improved Stop Scan.
538
-
539
- = 5.3.16 =
540
- * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus : Stop Scan.
541
-
542
- = 5.3.15 =
543
- * Google Authenticator - Two Factor Authentication (2FA) : Anti-Malware : schedule scan.
544
-
545
- = 5.3.14 =
546
- * Google Authenticator - Two Factor Authentication (2FA) : Anti-Malware : Adding more signatures.
547
-
548
- = 5.3.13 =
549
- * Google Authenticator - Two Factor Authentication (2FA) : Security : fix UI Issue and improving 2fa.
550
-
551
- = 5.3.12 =
552
- * Google Authenticator - Two Factor Authentication (2FA) : Security : backup table fix.
553
-
554
- = 5.3.11 =
555
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Limiting Firewall, Malware, backup and login security for users not needing it.
556
-
557
- = 5.3.10 =
558
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Moved to Old WAF version minor issues.
559
-
560
- = 5.3.9 =
561
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Web application Firewall Sql Injections report and monitoring.
562
-
563
-
564
- = 5.3.8 =
565
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Malware Scanner Fix.
566
-
567
- = 5.3.7 =
568
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Two factor login with username fix.
569
-
570
- = 5.3.6 =
571
- * Google Authenticator - Two Factor Authentication (2FA) : Anti virus zip file fix.
572
-
573
- = 5.3.5 =
574
- * Google Authenticator - Two Factor Authentication (2FA) : Backup URL Fix and space issue in google authenticator.
575
-
576
- = 5.3.4 =
577
- * Google Authenticator - Two Factor Authentication (2FA) : CSS fix for Malware Scanner, Security and firewall.
578
-
579
- = 5.3.3 =
580
- * Google Authenticator - Two Factor Authentication (2FA) : Minor Malware Scanner issues fix.
581
-
582
- = 5.3.2 =
583
- * Google Authenticator - Two Factor Authentication (2FA) : File Changes.
584
-
585
- = 5.3.1 =
586
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
587
-
588
- = 5.3.0 =
589
- * Google Authenticator - Two Factor Authentication (2FA) : Releasing Firewall with Two Factor.
590
-
591
- = 5.2.6 =
592
- * Google Authenticator - Two Factor Authentication (2FA) : Fixed conflict and filter issues.
593
-
594
- = 5.2.5 =
595
- * Google Authenticator - Two Factor Authentication (2FA) : Some warnings in remote post.
596
-
597
- = 5.2.4 =
598
- * Google Authenticator - Two Factor Authentication (2FA) : Removed curl calls and unncessary files.
599
-
600
- = 5.2.3 =
601
- * Google Authenticator - Two Factor Authentication (2FA) : Fix for some users facing issues in api calls.
602
-
603
- = 5.2.2 =
604
- * Google Authenticator - Two Factor Authentication (2FA) : Adding File Protection and Strong Password feature.
605
-
606
- = 5.2.1 =
607
- * Google Authenticator - Two Factor Authentication (2FA) : UI changes for description.
608
-
609
- = 5.2.0 =
610
- * Google Authenticator - Two Factor Authentication (2FA) : UI changes with more description.
611
-
612
- = 5.1.22 =
613
- * Google Authenticator - Two Factor Authentication (2FA) : UI Fixes.
614
-
615
- = 5.1.21 =
616
- * Google Authenticator - Two Factor Authentication (2FA) : Login Redirect.
617
-
618
- = 5.1.20 =
619
- * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix.
620
-
621
- = 5.1.19 =
622
- * Google Authenticator - Two Factor Authentication (2FA) : Adding basic Security Features Monitorning, IP blocking and login transaction report.
623
-
624
- = 5.1.18 =
625
- * Google Authenticator - Two Factor Authentication (2FA) : Object access error for lower PHP versions.
626
-
627
- = 5.1.17 =
628
- * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix and Documentation changes.
629
-
630
- = 5.1.16 =
631
- * Google Authenticator - Two Factor Authentication (2FA) : Login redirect fix.
632
-
633
- = 5.1.15 =
634
- * Google Authenticator - Two Factor Authentication (2FA) : UI Fixes.
635
-
636
- = 5.1.14 =
637
- * Google Authenticator - Two Factor Authentication (2FA) : Database Error Fix and Custom Redirect.
638
-
639
- = 5.1.12 =
640
- * Google Authenticator - Two Factor Authentication (2FA) : Removing redundant code.
641
-
642
- = 5.1.11 =
643
- * Google Authenticator - Two Factor Authentication (2FA) : Password Pattern Fix.
644
-
645
- = 5.1.10 =
646
- * Google Authenticator - Two Factor Authentication (2FA) : Javascript Error fixes.
647
-
648
- = 5.1.9 =
649
- * Google Authenticator - Two Factor Authentication (2FA) : Added visual tour and security fixes.
650
-
651
- = 5.1.8 =
652
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for Validation.
653
-
654
- = 5.1.7 =
655
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for DB error after Update.
656
-
657
- = 5.1.6 =
658
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for DB error.
659
-
660
- = 5.1.5 =
661
- * Google Authenticator - Two Factor Authentication (2FA) : UI changes.
662
-
663
- = 5.1.4 =
664
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes for redirect to login page issues.
665
-
666
- = 5.1.3 =
667
- * Google Authenticator - Two Factor Authentication (2FA) : Minor bug fixes.
668
-
669
- = 5.1.2 =
670
- * Google Authenticator - Two Factor Authentication (2FA) : Changes in registration flow.
671
-
672
- = 5.1.1 =
673
- * Google Authenticator - Two Factor Authentication (2FA) : Minor changes.
674
-
675
- = 5.1.0 =
676
- * Google Authenticator - Two Factor Authentication (2FA) : Added new user plans.
677
-
678
- = 5.0.17 =
679
- * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix.
680
-
681
- = 5.0.16 =
682
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes.
683
-
684
- = 5.0.15 =
685
- * Google Authenticator - Two Factor Authentication (2FA) : Added Google Authenticator option in the WP login page itself.
686
-
687
- = 5.0.14 =
688
- * Google Authenticator - Two Factor Authentication (2FA) : Bug Fixs.
689
-
690
- = 5.0.13 =
691
- * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix and code optimization.
692
-
693
- = 5.0.12 =
694
- * Google Authenticator - Two Factor Authentication (2FA) : Added GDPR Compliance.
695
-
696
- = 5.0.11 =
697
- * Google Authenticator - Two Factor Authentication (2FA) : Readme Update.
698
-
699
- = 5.0.10 =
700
- * Google Authenticator - Two Factor Authentication (2FA) : Added Proxy Setup feature.
701
-
702
- = 5.0.9 =
703
- * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for "The loopback request to your site failed." error.
704
-
705
- = 5.0.8 =
706
- * Google Authenticator - Two Factor Authentication (2FA) : Changes for 2FA Free plugin for 1 user forever.
707
-
708
- = 5.0.7 =
709
- * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for User Registration and other plugin conflicts in Dashboard.
710
-
711
- = 5.0.6 =
712
- * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for existing customers who upgraded from 4.5.x version to versions between 5.0.0 and 5.0.4 and are facing issues with the Account Setup Tab.
713
-
714
- = 5.0.5 =
715
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for user entry during plugin update.
716
-
717
- = 5.0.4 =
718
- * Google Authenticator - Two Factor Authentication (2FA) : Workaround for errors during sending of OTP during registration.
719
-
720
- = 5.0.3 =
721
- * Google Authenticator - Two Factor Authentication (2FA) : Minor fix for removing warings.
722
-
723
- = 5.0.2 =
724
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
725
-
726
- = 5.0.1 =
727
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
728
-
729
- = 5.0.0 =
730
- * Google Authenticator - Two Factor Authentication (2FA) : New UI Interface, 2 factor authentication for Unlimited Users.
731
- * This is a major release.
732
-
733
- = 4.6.2 =
734
- * Google Authenticator - Two Factor Authentication (2FA) : Plugin registration fixes and minor warning fixes.
735
-
736
- = 4.6.1 =
737
- * Google Authenticator - Two Factor Authentication (2FA) : Login error fix. Please skip version 4.5.9 and update to version 4.6.1
738
-
739
- = 4.5.9 =
740
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes for customers who were getting redirected to the login page after the two factor authentication.
741
-
742
- = 4.5.8 =
743
- * Google Authenticator - Two Factor Authentication (2FA) : Tested upto 4.9.4 and Removed External links.
744
-
745
- = 4.5.7 =
746
- * Google Authenticator - Two Factor Authentication (2FA) : Minor bug fixes.
747
-
748
- = 4.5.6 =
749
- * Google Authenticator - Two Factor Authentication (2FA) : Tested upto Wordpress 4.9.
750
-
751
- = 4.5.5 =
752
- * Google Authenticator - Two Factor Authentication (2FA) : 404 bug fixes.
753
-
754
- = 4.5.4 =
755
- * Google Authenticator - Two Factor Authentication (2FA) : Better UI of Login Pages, Fixed Redirection issue. Fixed the error in the last version (4.5.3) for the customers who were getting undefined action error.
756
-
757
- = 4.5.3 =
758
- * Google Authenticator - Two Factor Authentication (2FA) : Changed UI of the Login Pages, Redirect to Login Page bug fixes.
759
-
760
- = 4.5.2 =
761
- * Google Authenticator - Two Factor Authentication (2FA) : Readme Update: Description Update
762
-
763
- = 4.5.1 =
764
- * Google Authenticator - Two Factor Authentication (2FA) : Updated the new Authenticator App's link and the 'How to Setup Tab' tab.
765
-
766
- = 4.5.0 =
767
- * Google Authenticator - Two Factor Authentication (2FA) : Fix Google Authenticator configuration issue.
768
-
769
- = 4.4.9 =
770
- * Google Authenticator - Two Factor Authentication (2FA) : Added Alert Message for SMS Transactions only when authentication method is OTP over SMS.
771
-
772
- = 4.4.8 =
773
- * Google Authenticator - Two Factor Authentication (2FA) : Added Alert Message for SMS Transactions. Fixed Remember Device flow and confliction with themes. Added support for multiple instances of wordpress.
774
-
775
- = 4.4.7 =
776
- * Google Authenticator - Two Factor Authentication (2FA) : Updated the error message for 2 factor configuration.
777
-
778
- = 4.4.6 =
779
- * Google Authenticator - Two Factor Authentication (2FA) : Instructions for login in case user get locked out.
780
-
781
-
782
- = 4.4.5 =
783
- * Google Authenticator - Two Factor Authentication (2FA) : Fixed the issue of session variable on the login with username page.
784
-
785
- = 4.4.4 =
786
- * Google Authenticator - Two Factor Authentication (2FA) : Added alert messages for OTP over SMS usages.
787
-
788
- = 4.4.3 =
789
- * Google Authenticator - Two Factor Authentication (2FA) : Fixed the login flow for third party Apps that supports XML-RPC.
790
-
791
- = 4.4 =
792
- * Google Authenticator - Two Factor Authentication (2FA):
793
- * Compatibility with Limit Login Attempts.
794
- * New User Interface for login.
795
-
796
- = 4.3.1 =
797
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Compatible upto 4.7
798
-
799
- = 4.3.0 =
800
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Updated miniOrange APIs.
801
-
802
- = 4.2.9 =
803
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Tested upto WordPress 4.6.
804
-
805
- = 4.2.7 =
806
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Session Warnig fix in the last version for some of the users.
807
-
808
- = 4.2.6 =
809
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Compatible with wordpress caching.
810
-
811
- = 4.2.5 =
812
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Improved the session handler.
813
-
814
- = 4.2.4 =
815
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Updated faq for limit login attempt type of plugins.
816
-
817
- = 4.2.3 =
818
- * Google Authenticator - Two Factor Authentication ( 2FA ):
819
- * Improved Error handling during Account Creation.
820
-
821
- = 4.2.2 =
822
- * Google Authenticator - Two Factor Authentication ( 2FA ):
823
- * Registration Flow fixes
824
-
825
- = 4.2.1 =
826
- * Google Authenticator - Two Factor Authentication ( 2FA ):
827
- * Change of status during login with phone flow and tested with WP 4.5
828
-
829
- = 4.2.0 =
830
- * Google Authenticator - Two Factor Authentication ( 2FA ):
831
- * Mark as tested on Wordpress 4.5
832
-
833
- = 4.1.8 =
834
- * Google Authenticator - Two Factor Authentication ( 2FA ):
835
- * Changed the location of images used for demo. Now being loaded from the site having SSL certificate.
836
-
837
- = 4.1.7 =
838
- * Google Authenticator - Two Factor Authentication ( 2FA ):
839
- * Improved Error Handling for Remember Device.
840
-
841
- = 4.1.6 =
842
- * Google Authenticator - Two Factor Authentication ( 2FA ):
843
- * Licensing Plan Updated.
844
-
845
- = 4.1.5 =
846
- * Google Authenticator - Two Factor Authentication ( 2FA ):
847
- * Added Forgot Password functionality for miniOrange customer admin.
848
- * Added warning message for the users who are using lower version of php.
849
- * Added functionlity to change the customer email.
850
-
851
- = 4.1.4 =
852
- * Google Authenticator - Two Factor Authentication ( 2FA ):
853
- * Added an option for admin to enable or disable login for XML-RPC supported applications.
854
-
855
- = 4.1.3 =
856
- * Google Authenticator - Two Factor Authentication ( 2FA ):
857
- * Fixed CSS Conflict with the plugins in the admin dashboard.
858
- * More intuitive UI for woocommerce login.
859
- * Tested front-end login with themes like wordpress default theme,
860
- customizr theme,zerif-lite theme,accesspress store theme,ishop theme and many more.
861
-
862
- = 4.1.2 =
863
- * Google Authenticator - Two Factor Authentication ( 2FA ): Google Authenticator for Windows phone
864
- * Fixed CSS conflict with front-end of site if woocommerce is not enabled.
865
-
866
- = 4.1.1 =
867
- * Google Authenticator - Two Factor Authentication ( 2FA ): Adding Validation in choosing Security Questions (KBA).
868
-
869
- = 4.1.0 =
870
- * Google Authenticator - Two Factor Authentication ( 2FA ): Features added.
871
- multisite support
872
- Custom login redirection
873
- Authy 2-Factor Authentication as separate authentication method
874
-
875
- = 4.0.5 = Google Authenticator - Two Factor Authentication ( 2 Factor) : Login into third party apps which support XML-RPC.
876
-
877
- = 4.0.4 = Google Authenticator - Two Factor Authentication ( 2 Factor) : Added a check of KBA configuration from mobile login.
878
-
879
- = 4.0.3 = Google Authenticator - Two Factor Authentication ( 2 Factor) : Added Support for Authy 2-Factor Authentication App.
880
-
881
- = 4.0.2 = Google Authenticator - Two Factor Authentication ( 2 Factor) : Added a check for selection of unique questions during KBA setup.
882
-
883
- = 4.0.1 = Bug Fix Google Authenticator - Two Factor Authentication ( 2 Factor)
884
-
885
- = 4.0 =
886
- * Google Authenticator - Two Factor Authentication ( 2FA ): Features added.
887
- * KBA as backup method.
888
- * mobile browser support.
889
- * more intuitive UI for woocommerce login.
890
-
891
- = 3.8 =
892
- * Google Authenticator - Two Factor Authentication ( 2FA ): Bug Fix.
893
-
894
- = 3.7 =
895
- * Google Authenticator - Two Factor Authentication ( 2FA ): Activation of two factor role wise.
896
-
897
- = 3.6 =
898
- * Google Authenticator - Two Factor Authentication ( 2FA ): email verification in inline registration flow for all users.
899
- More descriptive setup messages and UI changes.
900
-
901
- = 3.5 =
902
- * Google Authenticator - Two Factor Authentication ( 2FA ): Provided mobile login support.
903
-
904
- = 3.4 =
905
- * Google Authenticator - Two Factor Authentication ( 2FA ): Features added
906
- * Inline registration flow for users.
907
- * Security Questions (KBA) as additional method
908
- * Alternate way of user identification in customer creation.
909
- * premium customizable features.
910
-
911
- = 3.3 =
912
- * Google Authenticator - Two Factor Authentication ( 2FA ): Fix the issue of session for some versions of php.
913
-
914
- = 3.2 =
915
- * Google Authenticator - Two Factor Authentication ( 2FA ): Fix for device-id compatibility.
916
-
917
- = 3.1 =
918
- * Google Authenticator - Two Factor Authentication ( 2FA ): Fix for 2FA ShortCode.
919
-
920
- = 3.0 =
921
- * Google Authenticator - Two Factor Authentication ( 2FA ): Features added
922
- * Google Authenticator.
923
- * Device Id (Remember device).
924
- * Choice given to admin to enable specific authentication methods for users.
925
- * Two Factor support for woocommerce theme.
926
- * Short Code for various customized frontend login.
927
- * More intuitive UI and descriptive instructions.
928
-
929
- = 2.6 =
930
- * Google Authenticator - Two Factor Authentication ( 2FA ): Fix the compatibility issues of user session with other security plugins.
931
-
932
- = 2.5 =
933
- * Google Authenticator - Two Factor Authentication ( 2FA ): Fix the compatibility issues with All In One WP Security & Firewall plugin.
934
-
935
- = 2.4 =
936
- * Google Authenticator - Two Factor Authentication ( 2FA ): UI fixes for admin media library dashboard.
937
-
938
- = 2.3 =
939
- * Google Authenticator - Two Factor Authentication ( 2FA ): More descriptive setup messages, more intuitive UI.
940
-
941
- = 2.2 =
942
- * Google Authenticator - Two Factor Authentication ( 2FA ): Fixed css issues for existing users
943
-
944
- = 2.1 =
945
- * Google Authenticator - Two Factor Authentication ( 2FA ): Added support for multiple Two Factor Choices like OTP Over SMS, Phone Call Verification, Push Notification, Soft Token (like Google Authenticator Code), Email Verification, etc.
946
-
947
- = 2.0 =
948
- * Google Authenticator - Two Factor Authentication ( 2FA ): Added login with password plus second factor feature.
949
-
950
- = 1.8 =
951
- * Google Authenticator - Two Factor Authentication ( 2FA ): Added feature of different login form choice,test authentication and help for configuration and setup.
952
-
953
- = 1.7 =
954
- * Bug Fixes Google Authenticator - Two Factor Authentication ( 2FA ): Modifying login screen adaptable to user's login form
955
-
956
- = 1.6 =
957
- * Bug Fixes Google Authenticator - Two Factor Authentication ( 2FA ): fetching 2 factor configuration when activating the plugin after deactivating it.
958
-
959
- = 1.5 =
960
- * Bug Fixes Google Authenticator - Two Factor Authentication ( 2FA ): Login issues and password save issues resolved
961
-
962
- = 1.4 =
963
- * Bug Fixes Google Authenticator - Two Factor Authentication ( 2FA ): Authentication was not working on some version of php.
964
-
965
- = 1.3 =
966
- * Bug Fixes Google Authenticator - Two Factor Authentication ( 2 Factor )
967
-
968
- = 1.2 =
969
- * Google Authenticator - Two Factor Authentication ( 2FA ): Added 2 factor for all users along with forgot phone functionality.
970
-
971
- = 1.1 =
972
- * Google Authenticator - Two Factor Authentication ( 2FA ): Added email ID verification during registration.
973
-
974
- = 1.0.0 =
975
- * First version of Google Authenticator - Two Factor Authentication ( 2FA ) plugin supported with mobile auhthentication for admin only.
976
-
977
- == Upgrade Notice ==
978
-
979
- = 5.4.28 =
980
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
981
- * New year sale update
982
-
983
- = 5.4.27 =
984
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
985
- * New year sale
986
- * WordPress 5.6 compatibility fix
987
- * WAF fixes
988
- * Real time IP blocking
989
- * IP based user login
990
- * New feature release notification
991
-
992
- = 5.4.26 =
993
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
994
- * Christmas Offer
995
-
996
- = 5.4.25 =
997
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
998
- * OTP over Telegram Fixes
999
-
1000
- = 5.4.24 =
1001
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
1002
- * OTP over Whatsapp
1003
- * OTP over Telegram
1004
- * Feedback form changes
1005
-
1006
- = 5.4.23 =
1007
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
1008
- * Call support with technical team
1009
- * Email and SMS transaction sync
1010
- * Feedback form on network deactivate
1011
- * Enable/Disable 2FA fix
1012
- * 2FA added for superadmin role
1013
-
1014
- = 5.4.22 =
1015
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
1016
- * Backup Codes
1017
- * Sanitization and JS improvements
1018
- * SMS and Email Sync
1019
- * Whatsapp based Two factor in Premium plugin
1020
- * Telegram based Two factor in Premium plugin
1021
-
1022
- = 5.4.21 =
1023
- * Google Authenticator - Two Factor Authentication (2FA, SMS) :
1024
- * Sanitization of some input values.
1025
-
1026
- = 5.4.20 =
1027
- * Google Authenticator - Two Factor Authentication (2FA, SMS) :
1028
- * Google Authenticator Qr code fix.
1029
- * My theme login Login fix.
1030
-
1031
- = 5.4.19 =
1032
- * Google Authenticator - Two Factor Authentication (2FA, OTP) : Google Authenticator cloud fix.
1033
-
1034
- = 5.4.18 =
1035
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
1036
- * Added missing file
1037
-
1038
- = 5.4.17 =
1039
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
1040
- *Digimember Form Support
1041
- *Memberpress Form Support
1042
- *SMS Verification Support
1043
- *OTP Verification on Woocommerce Registration
1044
-
1045
- = 5.4.16 =
1046
- * Google Authenticator - Two Factor Authentication (2FA, OTP) : Quick form fix.
1047
-
1048
- = 5.4.15 =
1049
- * Google Authenticator - Two Factor Authentication (2FA, OTP) :
1050
- * Theme My Login plugin Support
1051
- * Ultimate Memember Registration Support
1052
- * Woocommerce Registration Support
1053
- * Ultimate Memember Redirect
1054
- * Restrict Content Pro Login and Registration
1055
-
1056
- = 5.4.14 =
1057
- * Google Authenticator - Two Factor Authentication (2FA, MFA) : Performance improvement with fixes in Security Questions. And User Email verification and Phone Verification issues resolved.
1058
-
1059
- = 5.4.13 =
1060
- * Google Authenticator - Two Factor Authentication (2FA, TFA) : Support Form Improvement.
1061
-
1062
- = 5.4.11 =
1063
- * Google Authenticator - Two Factor Authentication (2FA, MFA) : Feedback Issue fix.
1064
-
1065
- = 5.4.9 =
1066
- * Google Authenticator - Two Factor Authentication (2FA, TFA) : User Experience, new support form and Security disabled by default. Added New Methods for users to choose.
1067
-
1068
- = 5.4.8 =
1069
- * Google Authenticator - Two Factor Authentication (2FA, OTP Verification) : Learning Management System support, Microsoft Authenticator and Duo Authenticator support and restrict account sharing add-on.
1070
-
1071
- = 5.4.7 =
1072
- * Google Authenticator - Two Factor Authentication (2FA, SMS Verification) : Fixing warnings and adding minor changes in the plans.
1073
-
1074
- = 5.4.6 =
1075
- * Google Authenticator - Two Factor Authentication (2FA) : Improving Google Authenticator and adding Payment options.
1076
-
1077
- = 5.4.5 =
1078
- * Google Authenticator - Two Factor Authentication (2FA) : Security and MFA UI updates.
1079
-
1080
- = 5.4.4 =
1081
- * Google Authenticator - Two Factor Authentication (2FA) : Two Factor : Woocommerce login page integration.
1082
-
1083
- = 5.4.3 =
1084
- * Google Authenticator - Two Factor Authentication (2FA) : Session issue fix for customers using Two Factor.
1085
-
1086
- = 5.4.2 =
1087
- * Google Authenticator - Two Factor Authentication (2FA) : Warning for cloud customer moving to on-premise Two factor
1088
-
1089
- = 5.4.0 =
1090
- * Google Authenticator - Two Factor Authentication (2FA) : Two Factor FAQ Fix and OTP code convinence.
1091
-
1092
- = 5.3.26 =
1093
- * Google Authenticator - Two Factor Authentication (2FA) : Two Factor On-premise FAQ update.
1094
-
1095
- = 5.3.25 =
1096
- * Google Authenticator - Two Factor Authentication (2FA) : Two Factor On-premise support form.
1097
-
1098
- = 5.3.24 =
1099
- * Google Authenticator - Two Factor Authentication (2FA) : On-premise two factor released with multiple user support for some authentication methods.
1100
-
1101
- = 5.3.23 =
1102
- * Google Authenticator - Two Factor Authentication (2FA) : Scanner : Timing and caching issue fix.
1103
- * Disable 2fa on Woocommerce login.
1104
- * Login with Username only fix.
1105
-
1106
- = 5.3.22 =
1107
- * Google Authenticator - Two Factor Authentication (2FA) : Antivirus : Fixing Cache issues and adding nonce.
1108
-
1109
- = 5.3.21 =
1110
- * Google Authenticator - Two Factor Authentication (2FA) : Two Factor : Choice between Two factor and Security.
1111
-
1112
- = 5.3.20 =
1113
- * Google Authenticator - Two Factor Authentication (2FA) : Anti Malware : Fixing issue faced by users during scan.
1114
-
1115
- = 5.3.19 =
1116
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Giving users choice of two factor.
1117
-
1118
- = 5.3.18 =
1119
- * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus and Firewall : Fix Scan.
1120
-
1121
- = 5.3.17 =
1122
- * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus : Improved Stop Scan.
1123
-
1124
- = 5.3.16 =
1125
- * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus : Stop Scan.
1126
-
1127
- = 5.3.15 =
1128
- * Google Authenticator - Two Factor Authentication (2FA) : Anti-Malware : schedule scan.
1129
-
1130
- = 5.3.14 =
1131
- * Google Authenticator - Two Factor Authentication (2FA) : Anti-Malware : Adding more signatures.
1132
-
1133
- = 5.3.13 =
1134
- * Google Authenticator - Two Factor Authentication (2FA) : Security : fix UI Issue and improving 2fa.
1135
-
1136
- = 5.3.12 =
1137
- * Google Authenticator - Two Factor Authentication (2FA) : Security : backup table fix.
1138
-
1139
- = 5.3.11 =
1140
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Limiting Firewall, Malware, backup and login security for users not needing it.
1141
-
1142
- = 5.3.10 =
1143
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Moved to Old WAF version minor issues..
1144
-
1145
- = 5.3.9 =
1146
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Web application Firewall Sql Injections report and monitoring.
1147
-
1148
-
1149
- = 5.3.8 =
1150
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Malware Scanner Fix.
1151
-
1152
- = 5.3.7 =
1153
- * Google Authenticator - Two Factor Authentication (2FA) : Security : Two factor login with username fix.
1154
-
1155
- = 5.3.6 =
1156
- * Google Authenticator - Two Factor Authentication (2FA) : Anti virus zip file fix.
1157
-
1158
- = 5.3.5 =
1159
- * Google Authenticator - Two Factor Authentication (2FA) : Backup URL Fix and space issue in google authenticator.
1160
-
1161
- = 5.3.4 =
1162
- * Google Authenticator - Two Factor Authentication (2FA) : CSS fix for Malware Scanner, Security and firewall.
1163
-
1164
- = 5.3.3 =
1165
- * Google Authenticator - Two Factor Authentication (2FA) : Minor Malware Scanner issues fix.
1166
-
1167
- = 5.3.2 =
1168
- * Google Authenticator - Two Factor Authentication (2FA) : File Changes.
1169
-
1170
- = 5.3.1 =
1171
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
1172
-
1173
- = 5.3.0 =
1174
- * Google Authenticator - Two Factor Authentication (2FA) : Releasing Firewall with Two Factor.
1175
-
1176
- = 5.2.6 =
1177
- * Google Authenticator - Two Factor Authentication (2FA) : Fixed conflict and filter issues.
1178
-
1179
- = 5.2.5 =
1180
- * Google Authenticator - Two Factor Authentication (2FA) : Some warnings in remote post.
1181
-
1182
- = 5.2.4 =
1183
- * Google Authenticator - Two Factor Authentication (2FA) : Removed curl calls and unncessary files.
1184
-
1185
- = 5.2.3 =
1186
- * Google Authenticator - Two Factor Authentication (2FA) : Fix for some users facing issues in api calls.
1187
-
1188
- = 5.2.2 =
1189
- * Google Authenticator - Two Factor Authentication (2FA) : Adding File Protection and Strong Password feature.
1190
-
1191
- = 5.2.1 =
1192
- * Google Authenticator - Two Factor Authentication (2FA) : UI changes for description.
1193
-
1194
- = 5.2.0 =
1195
- * Google Authenticator - Two Factor Authentication (2FA) : UI changes with more description.
1196
-
1197
- = 5.1.22 =
1198
- * Google Authenticator - Two Factor Authentication (2FA) : UI Fixes.
1199
-
1200
- = 5.1.21 =
1201
- * Google Authenticator - Two Factor Authentication (2FA) : Login Redirect.
1202
-
1203
- = 5.1.20 =
1204
- * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix.
1205
-
1206
- = 5.1.19 =
1207
- * Google Authenticator - Two Factor Authentication (2FA) : Adding basic Security Features Monitorning, IP blocking and login transaction report.
1208
-
1209
- = 5.1.18 =
1210
- * Google Authenticator - Two Factor Authentication (2FA) : Object access error for lower PHP versions.
1211
-
1212
- = 5.1.17 =
1213
- * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix and Documentation changes.
1214
-
1215
- = 5.1.16 =
1216
- * Google Authenticator - Two Factor Authentication (2FA) : Login redirect fix.
1217
-
1218
- = 5.1.15 =
1219
- * Google Authenticator - Two Factor Authentication (2FA) : UI Fixes.
1220
-
1221
- = 5.1.14 =
1222
- * Google Authenticator - Two Factor Authentication (2FA) : Database Error Fix and Custom Redirect.
1223
-
1224
- = 5.1.12 =
1225
- * Google Authenticator - Two Factor Authentication (2FA) : Removing redundant code.
1226
-
1227
- = 5.1.11 =
1228
- * Google Authenticator - Two Factor Authentication (2FA) : Password Pattern Fix.
1229
-
1230
- = 5.1.10 =
1231
- * Google Authenticator - Two Factor Authentication (2FA) : Javascript Error fixes.
1232
-
1233
- = 5.1.9 =
1234
- * Google Authenticator - Two Factor Authentication (2FA) : Added visual tour and security fixes.
1235
-
1236
- = 5.1.8 =
1237
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for Validation.
1238
-
1239
- = 5.1.7 =
1240
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for DB error after Update.
1241
-
1242
- = 5.1.6 =
1243
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for DB error.
1244
-
1245
- = 5.1.5 =
1246
- * Google Authenticator - Two Factor Authentication (2FA) : UI changes.
1247
-
1248
- = 5.1.4 =
1249
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes for redirect to login page issues.
1250
-
1251
- = 5.1.3 =
1252
- * Google Authenticator - Two Factor Authentication (2FA) : Minor bug fixes.
1253
-
1254
- = 5.1.2 =
1255
- * Google Authenticator - Two Factor Authentication (2FA) : Changes in registration flow.
1256
-
1257
- = 5.1.1 =
1258
- * Google Authenticator - Two Factor Authentication (2FA) : Minor changes.
1259
-
1260
- = 5.1.0 =
1261
- * Google Authenticator - Two Factor Authentication (2FA) : Added new user plans
1262
-
1263
- = 5.0.17 =
1264
- * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix.
1265
-
1266
- = 5.0.16 =
1267
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes.
1268
-
1269
- = 5.0.15 =
1270
- * Google Authenticator - Two Factor Authentication (2FA) : Added Google Authenticator option in the WP login page itself.
1271
-
1272
- = 5.0.14 =
1273
- * Google Authenticator - Two Factor Authentication (2FA) : Bug Fixs.
1274
-
1275
- = 5.0.13 =
1276
- * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix and code optimization.
1277
-
1278
- = 5.0.12 =
1279
- * Google Authenticator - Two Factor Authentication (2FA) : Added GDPR Compliance.
1280
-
1281
- = 5.0.11 =
1282
- * Google Authenticator - Two Factor Authentication (2FA) : Readme Update.
1283
-
1284
- = 5.0.10 =
1285
- * Google Authenticator - Two Factor Authentication (2FA) : Added Proxy Setup feature.
1286
-
1287
- = 5.0.9 =
1288
- * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for "The loopback request to your site failed." error.
1289
-
1290
- = 5.0.8 =
1291
- * Google Authenticator - Two Factor Authentication (2FA) : Changes for 2FA Free plugin for 1 user forever.
1292
-
1293
- = 5.0.7 =
1294
- * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for User Registration and other plugin conflicts in Dashboard.
1295
-
1296
- = 5.0.6 =
1297
- * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for existing customers who upgraded from 4.5.x version to versions between 5.0.0 and 5.0.4 and are facing issues with the Account Setup Tab.
1298
-
1299
- = 5.0.5 =
1300
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for user entry during plugin update.
1301
-
1302
- = 5.0.4 =
1303
- * Google Authenticator - Two Factor Authentication (2FA) : Workaround for errors during sending of OTP during registration.
1304
-
1305
- = 5.0.3 =
1306
- * Google Authenticator - Two Factor Authentication (2FA) : Minor fix for removing warings.
1307
-
1308
- = 5.0.2 =
1309
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
1310
-
1311
- = 5.0.1 =
1312
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
1313
-
1314
- = 5.0.0 =
1315
- * Google Authenticator - Two Factor Authentication (2FA) : New UI Interface, 2-factor authentication for Unlimited Users.
1316
- * This is a major release.
1317
-
1318
- = 4.6.2 =
1319
- * Google Authenticator - Two Factor Authentication (2FA) : Plugin registration fixes and minor warning fixes.
1320
-
1321
- = 4.6.1 =
1322
- * Google Authenticator - Two Factor Authentication (2FA) : Login error fix. Please skip version 4.5.9 and update to version 4.6.1
1323
-
1324
- = 4.5.9 =
1325
- * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes for customers who were getting redirected to the login page after the two factor authentication.
1326
-
1327
- = 4.5.8 =
1328
- * Google Authenticator - Two Factor Authentication (2FA) : Tested upto 4.9.4 and Removed External links.
1329
-
1330
- = 4.5.7 =
1331
- * Google Authenticator - Two Factor Authentication (2FA) : Minor bug fixes.
1332
-
1333
- = 4.5.6 =
1334
- * Google Authenticator - Two Factor Authentication (2FA) : Tested upto Wordpress 4.9.
1335
-
1336
- = 4.5.5 =
1337
- * Google Authenticator - Two Factor Authentication (2FA) : 404 bug fixes.
1338
-
1339
- = 4.5.4 =
1340
- * Google Authenticator - Two Factor Authentication (2FA) : Better UI of Login Pages, Fixed Redirection issue. Fixed the error in the last version (4.5.3) for the customers who were getting undefined action error.
1341
-
1342
- = 4.4.3 =
1343
- * Google Authenticator - Two Factor Authentication (2FA) : Fixed the login flow for third party Apps that supports XML-RPC.
1344
-
1345
- = 4.4 =
1346
- * Google Authenticator - Two Factor Authentication (2FA):
1347
- * Note: This is very important update having altogether new UI and compatibility with Limit Login Attempts. After updating, please do not logout from your admin dashboard. Try to login from another browser and if you face any issue , please contact us at info@xecurify.com
1348
- * Compatibility with Limit Login Attempts.
1349
- * New User Interface for login.
1350
-
1351
- = 4.3.2 =
1352
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Revised licensing cost for users.
1353
-
1354
- = 4.3.1 =
1355
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Compatible upto 4.7
1356
-
1357
- = 4.3.0 =
1358
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Updated miniOrange APIs.
1359
-
1360
- = 4.2.9 =
1361
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Tested upto WordPress 4.6.
1362
-
1363
- = 4.2.7 =
1364
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Session Warnig fix in the last version for some of the users.
1365
-
1366
- = 4.2.6 =
1367
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Compatible with wordpress caching.
1368
-
1369
- = 4.2.5 =
1370
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Improved the session handler.
1371
-
1372
- = 4.2.4 =
1373
- * Google Authenticator - Two Factor Authentication (2FA, MFA): Updated faq for limit login attempt type of plugins.
1374
-
1375
- = 4.2.3 =
1376
- * Google Authenticator - Two Factor Authentication ( 2FA ):
1377
- * Improved Error handling during Account Creation.
1378
-
1379
- = 4.2.2 =
1380
- * Google Authenticator - Two Factor Authentication ( 2FA ):
1381
- * Registration Flow fixes
1382
-
1383
- = 4.2.1 =
1384
- * Google Authenticator - Two Factor Authentication ( 2FA ):
1385
- * Change of status during login with phone flow and tested with WP 4.5
1386
-
1387
- = 4.2.0 =
1388
- * Google Authenticator - Two Factor Authentication ( 2FA ):
1389
- * Mark as tested on Wordpress 4.5
1390
-
1391
- = 4.1.8 =
1392
- * Google Authenticator - Two Factor Authentication ( 2FA ):
1393
- * Changed the location of images used for demo. Now being loaded from the site having SSL certificate.
1394
-
1395
- = 4.1.7 =
1396
- * Google Authenticator - Two Factor Authentication ( 2FA ):
1397
- * Improved Error Handling for Remember Device.
1398
-
1399
- = 4.1.6 =
1400
- * Google Authenticator - Two Factor Authentication ( 2 Factor ):
1401
- * Licensing Plan Updated.
1402
-
1403
- = 4.1.5 =
1404
- * Google Authenticator - Two Factor Authentication ( 2FA ):
1405
- * Added Forgot Password functionality for miniOrange customer admin.
1406
- * Added warning message for the users who are using lower version of php.
1407
- * Added functionality to change the customer email.
1408
-
1409
- = 4.1.4 =
1410
- * Google Authenticator - Two Factor Authentication ( 2FA ):
1411
- * Added an option for admin to enable or disable login for XML-RPC supported applications.
1412
-
1413
- = 4.1.3 =
1414
- * Google Authenticator - Two Factor Authentication ( 2FA ):
1415
- * Fixed CSS Conflict with the plugins in the admin dashboard.
1416
- * More intuitive UI for woocommerce login.
1417
- * Tested front-end login with themes like wordpress default theme,
1418
- customizr theme,zerif-lite theme,accesspress store theme,ishop theme and many more.
1419
-
1420
- = 4.1.2 =
1421
- * Google Authenticator - Two Factor Authentication ( 2FA ): Google Authenticator for Windows phone
1422
- * Fixed CSS conflict with front-end of site if woocommerce is not enabled.
1423
-
1424
- = 4.1.1 =
1425
- * Google Authenticator - Two Factor Authentication ( 2FA ): Adding Validation in choosing Security Questions (KBA).
1426
-
1427
- = 4.1.0 =
1428
- * Google Authenticator - Two Factor Authentication ( 2FA ): Features added.
1429
- multisite support
1430
- Custom login redirection
1431
- Authy 2-Factor Authentication as separate authentication method
1432
-
1433
- = 4.0.6 = Google Authenticator - Two Factor Authentication Added multisite support and custom redirection after login feature.
1434
-
1435
- = 4.0.5 = Google Authenticator - Two Factor Authentication Login into third party apps which support XML-RPC.
1436
-
1437
- = 4.0.4 = Google Authenticator - Two Factor Authentication Added a check of KBA configuration from mobile login.
1438
-
1439
- = 4.0.3 = Google Authenticator - Two Factor Authentication Added Support for Authy 2-Factor Authentication App.
1440
-
1441
- = 4.0.2 = Google Authenticator - Two Factor Authentication Added a check for selection of unique questions during KBA setup .
1442
-
1443
- = 4.0.1 = Bug Fix Google Authenticator - 2 Factor
1444
-
1445
- = 4.0 =
1446
- * Google Authenticator - Two Factor Authentication ( 2FA ): Features added.
1447
- * KBA as backup method.
1448
- * mobile browser support.
1449
- * more intuitive UI for woocommerce login.
1450
-
1451
- = 3.8 =
1452
- * Google Authenticator - Two Factor Authentication ( 2 Factor ): Bug Fix for roles.
1453
-
1454
- = 3.7 =
1455
- * Google Authenticator - Two Factor Authentication ( 2FA ): Activation of two factor role wise.
1456
-
1457
- = 3.6 =
1458
- * Google Authenticator - Two Factor Authentication ( 2FA ): email verification in inline registration flow for all users.
1459
- More descriptive setup messages and UI changes.
1460
-
1461
- = 3.5 =
1462
- * Google Authenticator - Two Factor Authentication ( 2FA ): Provided mobile login support.
1463
-
1464
- = 3.4 =
1465
- * Google Authenticator - Two Factor Authentication ( 2FA ): Features added
1466
- * Inline registration flow for users.
1467
- * Security Questions (KBA) as additional method
1468
- * Alternate way of user identification in customer creation.
1469
- * premium customizable features.
1470
-
1471
- = 3.3 =
1472
- * Google Authenticator - Two Factor Authentication ( 2FA ): Fix the issue of session for some versions of php.
1473
-
1474
- = 3.2 =
1475
- * Google Authenticator - Two Factor Authentication ( 2FA ): Fix for device-id compatibility.
1476
-
1477
- = 3.1 =
1478
- * Google Authenticator - Two Factor Authentication ( 2 Factor ): Fix for 2FA ShortCode.
1479
-
1480
- = 3.0 =
1481
- * Google Authenticator - Two Factor Authentication ( 2FA ): Features added
1482
- * Google Authenticator.
1483
- * Device Id (Remember device).
1484
- * Choice given to admin to enable specific authentication methods for users.
1485
- * Two Factor support for woocommerce theme.
1486
- * Short Code for various customized fronted login.
1487
- * More intuitive UI and descriptive instructions.
1488
-
1489
- = 2.6 =
1490
- * Google Authenticator - Two Factor Authentication ( 2FA ): Fix the compatibility issues of user session with other security plugins.
1491
-
1492
- = 2.5 =
1493
- * Google Authenticator - Two Factor Authentication ( 2FA ): Fix the compatibility issues with All In One WP Security & Firewall plugin.
1494
-
1495
- = 2.4 =
1496
- * Google Authenticator - Two Factor Authentication ( 2FA ): UI fixes for admin media library dashboard.
1497
-
1498
- = 2.3 =
1499
- * Google Authenticator - Two Factor Authentication ( 2FA ): More descriptive setup messages, more intuitive UI.
1500
-
1501
- = 2.2 =
1502
- * Google Authenticator - Two Factor Authentication ( 2FA ): Fixed css issues for existing users
1503
-
1504
- = 2.1 =
1505
- * Google Authenticator - Two Factor Authentication ( 2FA ): Added support for multiple Two Factor Choices like OTP Over SMS, Phone Call Verification, Push Notification, Soft Token (like Google Authenticator Code), Email Verification, etc.
1506
-
1507
- = 2.0 =
1508
- * Google Authenticator - Two Factor Authentication ( 2FA ): Added login with password plus second factor feature.
1509
-
1510
- = 1.8 =
1511
- * Google Authenticator - Two Factor Authentication ( 2FA ): Added feature of different login form choice,test authentication and help for configuration and setup.
1512
-
1513
- = 1.7 =
1514
- * Bug Fixes Google Authenticator - Two Factor Authentication ( 2FA ): Modifying login screen adaptable to user's login form
1515
-
1516
- = 1.6 =
1517
- * Bug Fixes Google Authenticator - Two Factor Authentication ( 2FA ): fetching 2 factor configuration when activating the plugin after deactivating it.
1518
-
1519
- = 1.5 =
1520
- * Bug Fixes Google Authenticator - Two Factor Authentication ( 2FA ): Login issues and password save issues resolved
1521
-
1522
- = 1.4 =
1523
- * Bug Fixes Google Authenticator - Two Factor Authentication ( 2FA ): Authentication was not working on some version of php.
1524
-
1525
- = 1.3 =
1526
- * Google Authenticator - Two Factor Authentication Bug Fixes
1527
-
1528
- = 1.2 =
1529
- * Google Authenticator - Two Factor Authentication ( 2FA ): Added 2 factor for all users along with forgot phone functionality.
1530
-
1531
- = 1.1 =
1532
- * Google Authenticator - Two Factor Authentication ( 2FA ): Added email ID verification during registration.
1533
-
1534
- = 1.0.0 =
1535
- First version of Two Factor Authentication ( 2FA ) plugin.
1
+ === Google Authenticator - WordPress Two Factor Authentication (2FA , MFA) ===
2
+
3
+ Contributors: cyberlord92, twofactor, hsn97
4
+ Tags: google authenticator, two factor authentication, two factor, 2FA,two-step verification, mobile verification,OTP, two-step verification, mobile verification,two factor,Two step verification, 2FA, TFA, MFA, 2 factor authentication, Remember Device, OTP,WordPress otp, two step authentication,Clef,SMS, email, signup security, two factor auth, Mobile Authentication, strong authentication, 2 step authentication, mobile verification,Multifactor authentication, passwordless login, one time passcode, soft token Authentication, QR Code Authentication, email verification, KBA, Security Questions,2FA, login OTP, login with SMS, mobile login, phone login, OTP login, mobile verification,knowledge based authentication,authy, authy two factor,yubico,Two-Factor Authentication,WordPress otp, security,user security, ​Twilio WordPress, SMS gateway, Solutions Infini, Clickatell, BulkSMS, MSG91, Nexmo, SMS Country, message, woocommerce, website security, login security, multi factor authentication, multi factor,wordfence, IP Blocking, IP Whitelisting, login Audits, woocommerce, SMS login, passwordless login, auth, login with OTP WordPress, OTP, two-step authentication, Mobile Authentication, passwordless login, login without password, passwordless authentication, secure login, temporary login, temporary access, one time passcode, email verification, security, website security, login security, multi-factor authentication, woocommerce, smartphone, WordPress otp, register with OTP, user OTP verification, SMS OTP, OTP Email, registration with OTP verification, registration verification,smartphone authentication
5
+ Donate link: https://miniorange.com/
6
+ Requires at least: 3.0.1
7
+ Tested up to: 5.6
8
+ Requires PHP: 5.3.0
9
+ Stable tag: 5.4.29
10
+ License: GPLv2 or later
11
+ License URI: http://www.gnu.org/licenses/gpl-2.0.html
12
+
13
+ Google Authenticator, OTP verificaion - SMS and Email, Apps like Microsoft, Duo, LastPass & more on login and Registration for all forms. Google AUthenticator also Supports QR Code, Push Notification and Security Questions along with the Google Authenticator itself.
14
+
15
+ == Description ==
16
+
17
+ Google Authenticator - Two Factor Authentication (2FA) plugin provides a completely Secure login to your WordPress website. Google Authenticator- Two Factor Authentication (2FA) is a FREE, Simple & very easy to setup plugin. Google Authenticator provides two factor authentication (2FA, MFA) whenever login to your WordPress website ensuring no unauthorised access to your website. Google Authenticator can be configured for any TOTP based Authentication Method.
18
+
19
+ = User Identity Verification or OTP Verification =
20
+ Login and Registration: Verify users on login and Registration with different authentication methods like Google Authenticator, SMS Verification, Email, Authy Authenticator, Duo Authenticator, Microsoft Authenticator, TOTP Based Authenticator, Security Questions and many others. Easy OTP Verification with SMS Verification and Email Verification.
21
+
22
+ = Google Authenticator and other 2FA sync on multiple websites =
23
+ You would not need to configure Google Authenticator and other 2FA methods from second site onword. Just login with miniOrange account and your 2FA will automatically get set. This is available for Google Authenticator, Duo Authenticator, Microsoft Authenticator, Securty Questions, LastPass, Authy, miniOrange methods, OTP over SMS, OTP over Email. It is supported only if you are using our cloud services.
24
+
25
+ == Plugin Integrations and Support ==
26
+ * [Woocommerce](https://wordpress.org/plugins/woocommerce/) (Login Woocommerce using Google Authenticator - Two Factor Authentication (2FA))
27
+ * [BuddyPress form](https://wordpress.org/plugins/buddypress/) (Login BuddyPress using Google Authenticator - Two Factor Authentication (2FA))
28
+ * [bbpress form](https://wordpress.org/plugins/bbpress/) (Login bbpress using Google Authenticator - Two Factor Authentication (2FA))
29
+ * [Digimember](https://digimember.com/) (Login Digimember using Google Authenticator - Two Factor Authentication (2FA))
30
+ * [Paid Memberships Pro](https://wordpress.org/plugins/paid-memberships-pro/) (Login Paid Memberships Pro using Google Authenticator - Two Factor Authentication (2FA))
31
+ * [Memberpress Pro](https://memberpress.com/) (Login Memberpress Pro using Google Authenticator - Two Factor Authentication (2FA))
32
+ * [Ultimate Member – User Profile & Membership Form](https://wordpress.org/plugins/ultimate-member/) (Login Ultimate Member – User Profile & Membership using Google Authenticator - Two Factor Authentication (2FA))
33
+ * [LearnDash](https://www.learndash.com/) (Login LearnDash using Google Authenticator - Two Factor Authentication (2FA))
34
+ * [LearnPress](https://wordpress.org/plugins/learnpress/) (Login LearnPress using Google Authenticator - Two Factor Authentication (2FA))
35
+ * [LifterLMS](https://wordpress.org/plugins/lifterlms/) (Login LifterLMS using Google Authenticator - Two Factor Authentication (2FA))
36
+ * [Dokan](https://wordpress.org/plugins/dokan-lite/) (Login Dokan using Google Authenticator - Two Factor Authentication (2FA))
37
+ * And many more
38
+
39
+ == WordPress login and registration forms support and integration ==
40
+ * [Restrict Content Pro Form](https://wordpress.org/plugins/restrict-content/) (Register and Login Restrict Content Pro using Google Authenticator - Two Factor Authentication (2FA))
41
+ * [My theme Login Form](https://wordpress.org/plugins/theme-my-login/) (Login My theme Login using Google Authenticator - Two Factor Authentication (2FA))
42
+ * [User Registration – Custom Registration Form](https://wordpress.org/plugins/bbpress/) (Register and Login User Registration – Custom Registration using Google Authenticator - Two Factor Authentication (2FA))
43
+ * [Custom Login Page Customizer Form](https://wordpress.org/plugins/loginpress/) (Login Custom Login Page Customizer using Google Authenticator - Two Factor Authentication (2FA))
44
+ * [Admin Custom Login Form](https://wordpress.org/plugins/admin-custom-login/) (Login Admin Custom Login using Google Authenticator - Two Factor Authentication (2FA))
45
+ * [RegistrationMagic – Custom Registration Forms](https://wordpress.org/plugins/custom-registration-form-builder-with-submission-manager/) (Register and Login RegistrationMagic – Custom Registration using Google Authenticator - Two Factor Authentication (2FA))
46
+ * And many more
47
+
48
+ = Third Party Custom SMS Gateway =
49
+ Premium plugin supports any third party custom SMS Gateway. If you don't have your own SMS gateway you can use miniOrange gateway. Send SMS all over the world.
50
+ * Some Famous Gateways Supported:
51
+ * Twilio : [Twilio](https://www.twilio.com/)
52
+ * Clickatell : [Clickatell](https://www.clickatell.com/)
53
+ * ClickSend : [ClickSend](https://www.clicksend.com/)
54
+ * SendGrid : [SendGrid](https://sendgrid.com/)
55
+ * Plivo : [Plivo](https://www.plivo.com/)
56
+ * GatewayApi : [GatewayApi](https://gatewayapi.com/)
57
+
58
+ Others not listed gateway can be tested on our site, Test your Gateway: [Custom Gateway](https://login.xecurify.com/moas/login?redirectUrl=https://login.xecurify.com/moas/admin/customer/smsconfig)
59
+
60
+ = All Registartion Forms Supported =
61
+ OTP Verification on all the Registration and Google Authenticator, Security Questions, Prevent Account Sharing, Push Notifications on all the Login forms to verify users. Use this shortcode for Registration([mo2f_enable_register]). Settings in <b>Two Factor -> Registration Forms</b>.
62
+
63
+
64
+ = FREE Plugin Features =
65
+ * Simplified & easy user interface to setup Google Authenticator and other 2FA methods.
66
+ * Google Authenticator - Two Factor Authentication (2FA) for **3 User** forever FREE!
67
+ * **Variety of Authentication Methods:** Any App supporting TOTP algorithm like Google Authenticator, Authy Authenticator, LastPass Authenticator, Microsoft Authenticator, QR Code, Push Notification, Soft Token and Security Questions(KBA)
68
+ * Includes Language Translation Support. Supports a wide variety of languages
69
+ * Passwordless login or login with phone number, supported for Google Authenticator and other 2FA methods.
70
+ * This plugin Supports standard TOTP + HOTP protocols for Authentication Methods. Any TOTP protocol based authenticator app can be configured using Google Authenticator option in the plugin.
71
+ * Two Factor Authentication (2FA) allows authentication on login page itself for Google Authenticator & miniOrange Soft Token.
72
+ * Brute force attack prevention & IP Blocking.
73
+ * User login Monitorning.
74
+ * RCP Login and Registration Suppport
75
+ * OTP Verification of Ulimate Member Registartion form
76
+ * Recovery codes in case you are locked out.
77
+
78
+ = Standard Plugin Features =
79
+
80
+ * Google Authenticator - Two Factor Authentication (2FA) for Users as per the upgrade *( User-based pricing )*
81
+ * **Available Authentication Methods:** Google Authenticator, Authy Authenticator, Microsoft Authenticator, LastPass Authenticator, QR Code, Push Notification, Soft Token, Security Questions(KBA), OTP Over Email, OTP Over SMS, OTP Over SMS and Email, Email Verification. *( SMS credits need to be purchased as per the need)*
82
+ * Includes language Translation Support. Supports wide variety of languages.
83
+ * **Multiple Login Options:** Username + password + two-factor (or) Username + two-factor i.e. Passwordless login. [Guide](https://docs.miniorange.com/documentation/login-username-2nd-factor-2)
84
+ * **Backup Method:** KBA(Security Questions)
85
+ * Multisite compatible.
86
+ * User role based redirection after Login [Guide](https://docs.miniorange.com/documentation/custom-redirect-login-url), Customize account name in Google Authenticator app [Guide](https://docs.miniorange.com/documentation/google-authenticator-app-name)
87
+ * Custom Security Questions (KBA) [Guide](https://docs.miniorange.com/documentation/custom-security-questions)
88
+
89
+ = Premium Plugin Features =
90
+
91
+ * Google Authenticator - Two Factor Authentication (2FA) for Users as per the upgrade *( User-based pricing )*
92
+ * **Available Authentication Methods:** Google Authenticator, Authy Authenticator, Microsoft Authenticator, LastPass Authenticator, QR Code, Push Notification, Soft Token, Security Questions(KBA), OTP Over Email, OTP Over SMS, OTP Over SMS and Email, Email Verification, Hardware Token, Whatsapp based 2fa(Add-on), Telegram Based 2fa. *( SMS and Email credits need to be purchased as per the need)*
93
+ * Language Translation Support
94
+ * **Multiple Login Options:** Username + password + two-factor (or) Username + two-factor i.e. Passwordless login [Guide](https://docs.miniorange.com/documentation/login-username-2nd-factor-2)
95
+ * **Backup Methods:** KBA(Security Questions), OTP Over Email, Backup Codes [Guide](https://docs.miniorange.com/documentation/want-configure-backup-methods-users-can-configure-case-locked-site-not-able-log)
96
+ * Multisite compatible.
97
+ * Force Two factor for users [Guide](https://docs.miniorange.com/documentation/enforce-2fa-users)
98
+ * Email notification to users asking them to set up Two Factor Authentication (2FA) [Guide](https://docs.miniorange.com/documentation/want-send-email-notification-users-setting-2-factor)
99
+ * User role based redirection after Login [Guide](https://docs.miniorange.com/documentation/custom-redirect-login-url), Custom Security Questions (KBA) [Guide](https://docs.miniorange.com/documentation/custom-security-questions), Customize account name in Google Authenticator app [Guide](https://docs.miniorange.com/documentation/google-authenticator-app-name).
100
+ * Enable Google Authenticator - Two Factor Authentication (2FA) for specific Users/User Roles [Guide](https://docs.miniorange.com/documentation/enable-two-factor-based-roles)
101
+ * Choose specific authentication methods for Users [Guide](https://docs.miniorange.com/documentation/specific-set-authentication-methods-based-role)
102
+ * Set Privacy Policy for users [Guide](https://docs.miniorange.com/documentation/privacy-policy-site)
103
+ * App Specific Password to login from mobile Apps
104
+ * Remember Device [Guide](https://docs.miniorange.com/documentation/remember-my-device)
105
+ * **Add-Ons Included:** RBA & Trusted Devices Management Add-on, Personalization Add-on and Short Codes Add-on
106
+
107
+ = Enterprise Plugin Features =
108
+
109
+ * Google Authenticator - Two Factor Authentication (2FA) for Users as per the upgrade *( User-based pricing )*
110
+ * **Available Authentication Methods:** Google Authenticator, Authy Authenticator, Microsoft Authenticator, LastPass Authenticator, QR Code, Push Notification, Soft Token, Security Questions(KBA), OTP Over Email, OTP Over SMS, OTP Over SMS and Email, Email Verification, Hardware Token. *( SMS and Email credits need to be purchased as per the need)*
111
+ * Language Translation Support
112
+ * **Multiple Login Options:** Username + password + two-factor (or) Username + two-factor i.e. Passwordless login.
113
+ * **Backup Methods:** KBA(Security Questions), OTP Over Email, Backup Codes
114
+ * Multisite compatible.
115
+ * Email notification to users asking them to set up Google Authenticator - Two Factor Authentication (2FA).
116
+ * User role based redirection after Login, Custom Security Questions (KBA), Customize account name in Google Authenticator app.
117
+ * Enable Two Factor Authentication (2FA) for specific Users/User Roles
118
+ * Choose specific authentication methods for Users
119
+ * App Specific Password to login from mobile Apps
120
+ * **Add-Ons Included:** RBA & Trusted Devices Management Add-on, Personalization Add-on and Short Codes Add-on
121
+ * **Brute force attack prevention, IP Blocking & User login Monitorning. **
122
+ * File protection & strong password
123
+
124
+ = PASSWORDLESS LOGIN =
125
+ Passwordless login is a new way of login in which you and your users can login without entering the password. The login can be done by username and 2-factor or only username which can be decided based on the user role. If a role is not allowed for passwordless login they will login with password and username.
126
+
127
+ == Prevent Account Sharing Between Users ==
128
+ Many video sharing and E-learning platforms want to prevent sharing of account between the users. This can be done using miniOrange Two factor plugin. Also, e-learning portals can use this to their advantage. It can be used on any websites which create and sell courses. It can be integrated with plugins like Learndash.
129
+ Other sites like premium video content or any premium content where you want users not to share passwords between friends and Family then you can go for this solution.
130
+
131
+ = Additional Features =
132
+ * **Complete Web Security suite to protect wordpress from any attacks**
133
+ * **Web Application Firewall (WAF) : Wordpress Firewall to protect your site**
134
+ * **OWASP TOP 10 Protection**
135
+ * **Login Protection : Spam and Login Protection**
136
+ * **Malware scanner: Detects any virus, malware and trojan**
137
+ * **Backup: Taking Encrypted Backup with local storage and cloud storage**
138
+ * **Two Factor Authentication : 2FA and MFA**
139
+ * **Limit Login Attempts to stop password guessing**
140
+ * **Realtime Global IP Blocing**
141
+ * **Limit Rate of Request : Protecting resources from any security hole exploit**
142
+ * **Crawler Detection and blocking**
143
+ * **Blocking IP and Attacks**
144
+ * **Country Blocking and Browser Blocking**
145
+ * **Brute Force Attacks prevention to stop password hack**
146
+ * **Captcha for Bot Detection**
147
+ * **Google Recaptcha**
148
+ * **Login Form Protection**
149
+ * **Registration Form Protection**
150
+ * **Integration with different plugin - Woo commerce, buddypress, ultimate member and others**
151
+ * **Reporting**
152
+ * **Audit Log**
153
+
154
+ Check all the features here: [miniOrange Website](https://security.miniorange.com/)
155
+
156
+ = Why do you need to register? =
157
+
158
+ miniOrange Two-factor Plugin uses miniOrange APIs to communicate between your WP and miniOrange. To keep this communication secure, we ask you to register and assign you API keys specific to your account. This way your account and users calls can be only accessed by API keys assigned to you.
159
+ Adding to this, you can also use the same account on multiple applications and your users do not have to maintain multiple accounts or 2-factors.
160
+
161
+ = Add Ons [Applicable for Free and Standard Plans, Inclusive in the Premium Plan] =
162
+
163
+ * RBA & Trusted Devices Management Add-on Features
164
+ * Remember Device
165
+ * Set Device Limit for the users to login
166
+ * IP Restriction: Limit users to login from specific IPs
167
+ * Personalization Add-on Features
168
+ * Custom UI of Two Factor Authentication (2FA) popups
169
+ * Custom Email and SMS Templates
170
+ * Customize 'Powered by' Logo
171
+ * Customize Plugin Icon
172
+ * Customize Plugin Name
173
+
174
+ * Short Codes Add-on Features
175
+ * Option to turn on/off 2-factor by user
176
+ * Option to configure the Google Authenticator and Security Questions by user
177
+ * Option to 'Enable Remember Device' from a custom login form
178
+ * On-Demand ShortCodes for specific functionalities ( like for enabling 2FA for specific pages)
179
+
180
+ = Apps Supported by the plugin =
181
+ * Google Authenticator
182
+ * miniOrange Authenticator
183
+ * Duo Authenticator
184
+ * Microsoft Authenticator
185
+ * Authy 2-Factor Authenticator
186
+ * LastPass Authenticator
187
+ * FreeOTP Authenticator
188
+
189
+ <h4>Useful blog posts about two factor authenticaion plugin </h4>
190
+ *[Beginner’s Guide: How to Add Two-Factor Authentication to WordPress](https://themeisle.com/blog/how-to-add-two-factor-authentication-to-wordpress/)
191
+ *[How to Add WordPress Two-Factor Authentication (2FA)](https://phppot.com/wordpress/how-to-add-wordpress-two-factor-authentication-2fa-using-google-authenticator-plugin/)
192
+
193
+ Customized solutions and Active support is available. Email us at info@miniorange.com or call us at +1 9786589387.
194
+
195
+ **Note: The plugin is GDPR Compliant and supports wide variety of Language Translation**
196
+
197
+ == Installation ==
198
+
199
+ = From your WordPress dashboard =
200
+ 1. Navigate to `Plugins > Add New` from your WP Admin dashboard.
201
+ 2. Search for `miniOrange 2 Factor Authentication`.
202
+ 3. Install `miniOrange 2 Factor Authentication` and Activate the plugin.
203
+
204
+ = From WordPress.org =
205
+ 1. Search for `miniOrange 2 Factor Authentication` and download it.
206
+ 2. Unzip and upload the `miniorange-2-factor-authentication` directory to your `/wp-content/plugins/` directory.
207
+ 3. Activate miniOrange 2 Factor Authentication from the Plugins tab of your admin dashboard.
208
+
209
+ = Once Activated =
210
+ 1. Select miniOrange 2-Factor from the left menu and follow the instructions.
211
+ 2. Once, you complete your setup. Click on Log Out button.
212
+ 3. Enter the username and password. After the initial validation, you will be prompted for the 2-factor method you had set up.
213
+ 4. Validate yourself with the 2-factor authentication method you configured.
214
+
215
+ <b>Video Guide</b> :<br>
216
+ <iframe width="560" height="315" src="https://www.youtube.com/embed/vVGXjedIaGs" frameborder="0" allow="accelerometer; autoplay; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
217
+
218
+
219
+ == Frequently Asked Questions ==
220
+
221
+ = How do I gain access to my website if I get locked out? =
222
+
223
+ You can obtain access to your website by one of the below options:
224
+
225
+ 1. If you have an additional administrator account whose Two Factor is not enabled yet, you can login with it.
226
+ 2. If you had setup KBA questions earlier, you can use them as an alternate method to login to your website.
227
+ 3. Rename the plugin from FTP - this disables the Two-Factor (2FA) plugin and you will be able to login with your Wordpress username and password.
228
+
229
+ For detailed information, Please check on our website. <a href="https://faq.miniorange.com/knowledgebase/gain-access-to-website-if-locked-out/" target="_blank">Locked Out</a>.<br>
230
+ You can also check our video Tutorial:
231
+ <iframe width="560" height="315" src="https://www.youtube.com/embed/wLFKakQkpk8" frameborder="0" allow="accelerometer; autoplay; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
232
+
233
+ = I want to enable Two-Factor Authentication (2FA) role wise ? =
234
+
235
+ You can select the roles under Login Settings tab to enable the plugin role wise. [PREMIUM FEATURE]
236
+
237
+ = I have enabled Two-Factor Authentication (2FA) for all users, what happens if an end user tries to login but has not yet registered ? =
238
+
239
+ If a user has not setup Two-Factor yet, user has to register by inline registration that will be invoked during the login.
240
+
241
+ = I want to enable only one authentication method for my users. What shloud I do? =
242
+
243
+ You can select the authentication methods under Login Settings tab. The selected authentication methods will be shown to the user during inline registration. [PREMIUM FEATURE]
244
+
245
+ = I am getting the fatal error of call to undefined function json_last_error(). What should I do? =
246
+
247
+ Please check your php version. The plugin is supported in php version 5.3.0 or above. You need to upgrade your php version to 5.3.0 or above to use the plugin.
248
+
249
+ = I did not recieve OTP while trying to register with miniOrange. What should I do? =
250
+
251
+ The OTP is sent to your email address with which you have registered with miniOrange. If you can't see the email from miniOrange in your mails, please make sure to check your SPAM folder. If you don't see an email even in SPAM folder, please submit a query in our Support Section in the plugin or you can contact us at info@miniorange.com.
252
+
253
+ = I want to configure 2nd factor by Google Authenticator. =
254
+
255
+ Select the radio button next to Google Authenticator/Authy App and select the phone type and then scan the QR Code by Google Authenticator App. Enter the 6 digit code in the textbox and click on Save and verify buuton.
256
+
257
+ = I want to configure 2nd factor by Authy 2-Factor Authentication App. =
258
+
259
+ Select the radio button next to Google Authenticator/Authy App and select the phone type and then scan the QR Code by Authy 2-Factor Authentication App. Enter the 6 digit code from the Authy App into the textbox available and click on Save and Verifiy button.
260
+
261
+ = I forgot the password of my miniOrange account. How can I reset it? =
262
+
263
+ There are two cases according to the page you see -<br>
264
+ 1. Login with miniOrange screen: You should click on forgot password link. You will get a new password on your email address with which you have registered with miniOrange . Now you can login with the new password.
265
+
266
+ 2. Register with miniOrange screen: Enter your email ID and any random password in password and confirm password input box. This will redirect you to Login with miniOrange screen. Now follow first step.
267
+
268
+ = I have a custom / front-end login page on my site and I want the look and feel to remain the same when I add 2 factor ? =
269
+
270
+ If you have a custom login form other than wp-login.php then we will provide you the shortcode. Shortcode will work only for the customized login page created from wordpress plugins. We are not claiming that it will work with all the customized login page. In such case, custom work is needed to integrate two factor with your customized login page. You can submit a query in our <b>Support Section</b> in the plugin or you can contact us at info@miniorange.com for more details.
271
+
272
+ = I have Woocommerce theme login page on my site. How can I enable Two Factor ? =
273
+
274
+ If you have Woocommerce theme login then go to Advanced Options Tab and check Enable Two-Factor for Woocommerce Front End Login. If you need any help setting up 2-Factor for your Woocommerce theme login form, please submit a query in our Support Section in the plugin or you can contact us at info@miniorange.com.
275
+
276
+ = I have installed plugins which limit the login attempts like Limit Login Attempt, Loginizer, Wordfence etc. Is there any incompatibilities with these kind of plugins? =
277
+
278
+ The limit login attempt kind of plugins limit the number of login attempts and block the IP temporarily. So if you are using 2 factor along with these kind of plugins then you should increase the login attempts (minimum 5) so that you dont get locked out yourself.
279
+
280
+ = If you are using any Security Plugin in WordPress like Simple Security Firewall, All in One WP Security Plugin and you are not able to login with Two-Factor. =
281
+
282
+ Our Two-Factor plugin is compatible with most of the security plugins, but if it is not working for you. Please submit a query in our Support Section in the plugin or you can contact us at info@miniorange.com.
283
+
284
+ = If you are using any render blocking javascript and css plugin like Async JS and CSS Plugin and you are not able to login with Two-Factor or your screen got blank. =
285
+
286
+ If you are using Async JS and CSS Plugin. Please go to its settings and add jquery in the list of exceptions and save settings. It will work. If you are still not able to get it right, Please submit a query in our Support Section in the plugin or you can contact us at info@miniorange.com.
287
+
288
+ = My users have different types of phones. What phones are supported? =
289
+
290
+ We support all types of phones. Smart Phones, Basic Phones, Landlines, etc. Go to Setup Two-Factor Tab and select Two-Factor method of your choice from a range of 8 different options.
291
+
292
+ = What if a user does not have a smart phone? =
293
+
294
+ You can select OTP over SMS, Phone Call Verification or Email Verification as your Two-Factor method. All these methods are supported on basic phones.
295
+
296
+ = What if a user does not have any phone? =
297
+
298
+ You can select Email Verification or Security Questions (KBA) as your Two-Factor method.
299
+
300
+ = What if I am trying to login from my phone ? =
301
+
302
+ If your Security Questions (KBA) are configured then you will be asked to answer them when you are logging in from your phone.
303
+
304
+ = I want to hide default login form and just want to show login with phone? =
305
+
306
+ You should go to <b>Login Settings Tab</b> and check <b>Login with Phone Only</b> checkbox to hide the default login form.
307
+
308
+
309
+ = My phone has no internet connectivity and configured 2nd factor with miniOrange App, how can I login? =
310
+
311
+ You can login using our alternate login method. Please follow below steps to login:
312
+
313
+ * Enter your username and click on login with your phone.
314
+ * Click on <b>Phone is Offline?</b> button below QR Code.
315
+ * You will see a textbox to enter one time passcode.
316
+ * Open miniOrange Authenticator App and Go to Soft Token Tab.
317
+ * Enter the one time passcode shown in miniOrange Authenticator App in textbox, just like Google authenticator.
318
+ * Click on submit button to validate the otp.
319
+ * Once you are authenticated, you will be logged in.
320
+
321
+ = My phone is lost, stolen or discharged. How can I login? =
322
+
323
+ You can login using our alternate login method. Click on the Forgot Phone link and you will get 2 alternate methods to login. Select "Send a one time passcode to my registered email" to authenticate by OTP over EMAIL or Select "Answer your Security Questions (KBA)" to authenticate by knowledge based authenticaion.
324
+
325
+ = My phone has no internet connectivity and i am entering the one time passcode from miniOrange Authenticator App, it says Invalid OTP?
326
+
327
+ Click on the <b>Settings Icon</b> on top right corner in <b>miniOrange Authenticator App</b> and then press <b>Sync button</b> under 'Time correction for codes' to sync your time with miniOrange Servers. If you still can't logged in then please email us at info@miniorange.com or <a href="https://miniorange.com/contact" target="_blank">Contact us</a>.Soft Token method is just like google authenticator method.
328
+
329
+ = I want to go back to default login with password? =
330
+
331
+ You should go to <b>Login Settings Tab</b> and uncheck <b>Enable Two-Factor plugin</b> checkbox. This will disable 2-Factor and you can login using wordpress default login.
332
+
333
+ = I am upgrading my phone. =
334
+
335
+ You should go to <b>Setup Two Factor</b> Tab and click on <b>Reconfigure</b> to reconfigure 2-Factor with your new phone.
336
+
337
+ = What If I want to use any other second factor like OTP Over SMS, Security Questions, Device Id, etc ? =
338
+
339
+ miniOrange authentication service has 15+ authentication methods.One time passcodes (OTP) over SMS, OTP over Email, OTP over SMS and Email, Out of Band SMS, Out of Band Email, Soft Token, Push Notification, USB based Hardware token (yubico), Security Questions, Mobile Authentication (QR Code Authentication), Voice Authentication (Biometrics), Phone Verification, Device Identification, Location, Time of Access User Behavior. To know more about authentication methods, please visit <a href="https://miniorange.com/strong_auth" target="_blank">https://miniorange.com/strong_auth </a>. If you want to have any other 2-factor for your WordPress site, please email us at info@miniorange.com or <a href="https://miniorange.com/contact" target="_blank">Contact us</a>.
340
+
341
+ == Screenshots ==
342
+
343
+ 1. Google Authenticator (2FA) - Setup different 2-Factor methods
344
+ 2. Google Authenticator (2FA) - Test 2 factor configured
345
+ 3. Google Authenticator (2FA) - 2 Factor Authentication methods available
346
+ 4. Google Authenticator (2FA) - Google Authenticator login
347
+ 5. Google Authenticator (2FA) - QR code 2 Factor login
348
+ 6. Google Authenticator (2FA) - miniOrange Authenticator login
349
+ 7. Google Authenticator (2FA) - Push notification login
350
+ 8. Google Authenticator (2FA) - Remember device and personalization add-ons
351
+
352
+ == Changelog ==
353
+
354
+ = 5.4.29 =
355
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
356
+ * Session independent Google Authenticator
357
+ * Session independent KBA
358
+ * Feedback improvement for two factor authentication plugin
359
+
360
+ = 5.4.28 =
361
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
362
+ * New year sale update
363
+
364
+ = 5.4.27 =
365
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
366
+ * New year sale
367
+ * WordPress 5.6 compatibility fix
368
+ * WAF fixes
369
+ * Real time IP blocking
370
+ * IP based user login
371
+ * New feature release notification
372
+
373
+ = 5.4.26 =
374
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
375
+ * Christmas Offer
376
+
377
+ = 5.4.25 =
378
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
379
+ * OTP over Telegram Fixes
380
+
381
+ = 5.4.24 =
382
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
383
+ * OTP over Whatsapp
384
+ * OTP over Telegram
385
+ * Feedback form changes
386
+
387
+ = 5.4.23 =
388
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
389
+ * Call support with technical team
390
+ * Email and SMS transaction sync
391
+ * Feedback form on network deactivate
392
+ * Enable/Disable 2FA fix
393
+ * 2FA added for superadmin role
394
+
395
+ = 5.4.22 =
396
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
397
+ * Backup Codes
398
+ * Sanitization and JS improvements
399
+ * SMS and Email Sync
400
+ * Whatsapp based Two factor in Premium plugin
401
+ * Telegram based Two factor in Premium plugin
402
+
403
+ = 5.4.21 =
404
+ * Google Authenticator - Two Factor Authentication (2FA, SMS) :
405
+ * Sanitization of some input values.
406
+
407
+ = 5.4.20 =
408
+ * Google Authenticator - Two Factor Authentication (2FA, SMS) :
409
+ * Google Authenticator Qr code fix.
410
+ * My theme login Login fix.
411
+
412
+ = 5.4.19 =
413
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) : Google Authenticator cloud fix.
414
+
415
+ = 5.4.18 =
416
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
417
+ *Added missing file
418
+
419
+ = 5.4.17 =
420
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
421
+ *Digimember Form Support
422
+ *Memberpress Form Support
423
+ *SMS Verification Support
424
+ *OTP Verification on Woocommerce Registration
425
+
426
+ = 5.4.16 =
427
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) : Quick form fix.
428
+
429
+ = 5.4.15 =
430
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
431
+ * Theme My Login plugin Support
432
+ * Ultimate Memember Registration Support
433
+ * Woocommerce Registration Support
434
+ * Ultimate Memember Redirect
435
+ * Restrict Content Pro Login and Registration
436
+
437
+ = 5.4.14 =
438
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) : Performance improvement with fixes in Security Questions. And User Email verification and Phone Verification issues resolved.
439
+
440
+ = 5.4.13 =
441
+ * Google Authenticator - Two Factor Authentication (2FA, MFA) : Support Form Improvement.
442
+
443
+ = 5.4.11 =
444
+ * Google Authenticator - Two Factor Authentication (2FA, TFA) : Feedback Issue fix.
445
+
446
+ = 5.4.9 =
447
+ * Google Authenticator - Two Factor Authentication (2FA, MFA) : User Experience, new support form and Security disabled by default. Added New Methods for users to choose.
448
+
449
+ = 5.4.8 =
450
+ * Google Authenticator - Two Factor Authentication (2FA, TFA) : Learning Management System support, Microsoft Authenticator and Duo Authenticator support and restrict account sharing add-on.
451
+ = 5.4.7 =
452
+ * Google Authenticator - Two Factor Authentication (2FA) : Fixing warnings and adding minor changes in the plans.
453
+
454
+ = 5.4.6 =
455
+ * Google Authenticator - Two Factor Authentication (2FA) : Improving Google Authenticator and adding Payment options.
456
+
457
+ = 5.4.5 =
458
+ * Google Authenticator - Two Factor Authentication (2FA) : Security and MFA UI updates.
459
+
460
+ = 5.4.4 =
461
+ * Google Authenticator - Two Factor Authentication (2FA) : Two Factor : Woocommerce login page integration.
462
+
463
+ = 5.4.3 =
464
+ * Google Authenticator - Two Factor Authentication (2FA , Two Factor) : Session issue fix for customers using Two Factor.
465
+
466
+ = 5.4.2 =
467
+ * Google Authenticator - Two Factor Authentication (2FA) : Warning for cloud customer moving to on-premise Two factor.
468
+
469
+ = 5.4.1 =
470
+ * Google Authenticator - Two Factor Authentication (2FA) : Headers sent issue is security firewall.
471
+
472
+ = 5.4.0 =
473
+ * Google Authenticator - Two Factor Authentication (2FA) : Two Factor FAQ Fix and OTP code convinence.
474
+
475
+ = 5.3.26 =
476
+ * Google Authenticator - Two Factor Authentication (2FA) : Two Factor On-premise FAQ update.
477
+
478
+ = 5.3.25 =
479
+ * Google Authenticator - Two Factor Authentication (2FA) : Two Factor On-premise support form.
480
+
481
+ = 5.3.24 =
482
+ * Google Authenticator - Two Factor Authentication (2FA) : On-premise two factor released with multiple users support for some authentication methods.
483
+
484
+ = 5.3.23 =
485
+ * Google Authenticator - Two Factor Authentication (2FA) : Scanner : Timing and caching issue fix.
486
+ * Disable 2fa on Woocommerce login.
487
+ * Login with Username only fix.
488
+
489
+ = 5.3.22 =
490
+ * Google Authenticator - Two Factor Authentication (2FA) : Antivirus : Fixing Cache issues and adding nonce.
491
+
492
+ = 5.3.21 =
493
+ * Google Authenticator - Two Factor Authentication (2FA) : Two Factor : Choice between Two factor and Security.
494
+
495
+ = 5.3.20 =
496
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti Malware : Fixing issue faced by users during scan.
497
+
498
+ = 5.3.19 =
499
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Giving users choice of two factor.
500
+
501
+ = 5.3.18 =
502
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus and Firewall : Fix Scan.
503
+
504
+ = 5.3.17 =
505
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus : Improved Stop Scan.
506
+
507
+ = 5.3.16 =
508
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus : Stop Scan.
509
+
510
+ = 5.3.15 =
511
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti-Malware : schedule scan.
512
+
513
+ = 5.3.14 =
514
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti-Malware : Adding more signatures.
515
+
516
+ = 5.3.13 =
517
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : fix UI Issue and improving 2fa.
518
+
519
+ = 5.3.12 =
520
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : backup table fix.
521
+
522
+ = 5.3.11 =
523
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Limiting Firewall, Malware, backup and login security for users not needing it.
524
+
525
+ = 5.3.10 =
526
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Moved to Old WAF version minor issues.
527
+
528
+ = 5.3.9 =
529
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Web application Firewall Sql Injections report and monitoring.
530
+
531
+
532
+ = 5.3.8 =
533
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Malware Scanner Fix.
534
+
535
+ = 5.3.7 =
536
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Two factor login with username fix.
537
+
538
+ = 5.3.6 =
539
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti virus zip file fix.
540
+
541
+ = 5.3.5 =
542
+ * Google Authenticator - Two Factor Authentication (2FA) : Backup URL Fix and space issue in google authenticator.
543
+
544
+ = 5.3.4 =
545
+ * Google Authenticator - Two Factor Authentication (2FA) : CSS fix for Malware Scanner, Security and firewall.
546
+
547
+ = 5.3.3 =
548
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor Malware Scanner issues fix.
549
+
550
+ = 5.3.2 =
551
+ * Google Authenticator - Two Factor Authentication (2FA) : File Changes.
552
+
553
+ = 5.3.1 =
554
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
555
+
556
+ = 5.3.0 =
557
+ * Google Authenticator - Two Factor Authentication (2FA) : Releasing Firewall with Two Factor.
558
+
559
+ = 5.2.6 =
560
+ * Google Authenticator - Two Factor Authentication (2FA) : Fixed conflict and filter issues.
561
+
562
+ = 5.2.5 =
563
+ * Google Authenticator - Two Factor Authentication (2FA) : Some warnings in remote post.
564
+
565
+ = 5.2.4 =
566
+ * Google Authenticator - Two Factor Authentication (2FA) : Removed curl calls and unncessary files.
567
+
568
+ = 5.2.3 =
569
+ * Google Authenticator - Two Factor Authentication (2FA) : Fix for some users facing issues in api calls.
570
+
571
+ = 5.2.2 =
572
+ * Google Authenticator - Two Factor Authentication (2FA) : Adding File Protection and Strong Password feature.
573
+
574
+ = 5.2.1 =
575
+ * Google Authenticator - Two Factor Authentication (2FA) : UI changes for description.
576
+
577
+ = 5.2.0 =
578
+ * Google Authenticator - Two Factor Authentication (2FA) : UI changes with more description.
579
+
580
+ = 5.1.22 =
581
+ * Google Authenticator - Two Factor Authentication (2FA) : UI Fixes.
582
+
583
+ = 5.1.21 =
584
+ * Google Authenticator - Two Factor Authentication (2FA) : Login Redirect.
585
+
586
+ = 5.1.20 =
587
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix.
588
+
589
+ = 5.1.19 =
590
+ * Google Authenticator - Two Factor Authentication (2FA) : Adding basic Security Features Monitorning, IP blocking and login transaction report.
591
+
592
+ = 5.1.18 =
593
+ * Google Authenticator - Two Factor Authentication (2FA) : Object access error for lower PHP versions.
594
+
595
+ = 5.1.17 =
596
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix and Documentation changes.
597
+
598
+ = 5.1.16 =
599
+ * Google Authenticator - Two Factor Authentication (2FA) : Login redirect fix.
600
+
601
+ = 5.1.15 =
602
+ * Google Authenticator - Two Factor Authentication (2FA) : UI Fixes.
603
+
604
+ = 5.1.14 =
605
+ * Google Authenticator - Two Factor Authentication (2FA) : Database Error Fix and Custom Redirect.
606
+
607
+ = 5.1.12 =
608
+ * Google Authenticator - Two Factor Authentication (2FA) : Removing redundant code.
609
+
610
+ = 5.1.11 =
611
+ * Google Authenticator - Two Factor Authentication (2FA) : Password Pattern Fix.
612
+
613
+ = 5.1.10 =
614
+ * Google Authenticator - Two Factor Authentication (2FA) : Javascript Error fixes.
615
+
616
+ = 5.1.9 =
617
+ * Google Authenticator - Two Factor Authentication (2FA) : Added visual tour and security fixes.
618
+
619
+ = 5.1.8 =
620
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for Validation.
621
+
622
+ = 5.1.7 =
623
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for DB error after Update.
624
+
625
+ = 5.1.6 =
626
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for DB error.
627
+
628
+ = 5.1.5 =
629
+ * Google Authenticator - Two Factor Authentication (2FA) : UI changes.
630
+
631
+ = 5.1.4 =
632
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes for redirect to login page issues.
633
+
634
+ = 5.1.3 =
635
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor bug fixes.
636
+
637
+ = 5.1.2 =
638
+ * Google Authenticator - Two Factor Authentication (2FA) : Changes in registration flow.
639
+
640
+ = 5.1.1 =
641
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor changes.
642
+
643
+ = 5.1.0 =
644
+ * Google Authenticator - Two Factor Authentication (2FA) : Added new user plans.
645
+
646
+ = 5.0.17 =
647
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix.
648
+
649
+ = 5.0.16 =
650
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes.
651
+
652
+ = 5.0.15 =
653
+ * Google Authenticator - Two Factor Authentication (2FA) : Added Google Authenticator option in the WP login page itself.
654
+
655
+ = 5.0.14 =
656
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug Fixs.
657
+
658
+ = 5.0.13 =
659
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix and code optimization.
660
+
661
+ = 5.0.12 =
662
+ * Google Authenticator - Two Factor Authentication (2FA) : Added GDPR Compliance.
663
+
664
+ = 5.0.11 =
665
+ * Google Authenticator - Two Factor Authentication (2FA) : Readme Update.
666
+
667
+ = 5.0.10 =
668
+ * Google Authenticator - Two Factor Authentication (2FA) : Added Proxy Setup feature.
669
+
670
+ = 5.0.9 =
671
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for "The loopback request to your site failed." error.
672
+
673
+ = 5.0.8 =
674
+ * Google Authenticator - Two Factor Authentication (2FA) : Changes for 2FA Free plugin for 1 user forever.
675
+
676
+ = 5.0.7 =
677
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for User Registration and other plugin conflicts in Dashboard.
678
+
679
+ = 5.0.6 =
680
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for existing customers who upgraded from 4.5.x version to versions between 5.0.0 and 5.0.4 and are facing issues with the Account Setup Tab.
681
+
682
+ = 5.0.5 =
683
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for user entry during plugin update.
684
+
685
+ = 5.0.4 =
686
+ * Google Authenticator - Two Factor Authentication (2FA) : Workaround for errors during sending of OTP during registration.
687
+
688
+ = 5.0.3 =
689
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor fix for removing warings.
690
+
691
+ = 5.0.2 =
692
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
693
+
694
+ = 5.0.1 =
695
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
696
+
697
+ = 5.0.0 =
698
+ * Google Authenticator - Two Factor Authentication (2FA) : New UI Interface, 2-factor authentication for Unlimited Users.
699
+ * This is a major release.
700
+
701
+ = 4.6.2 =
702
+ * Google Authenticator - Two Factor Authentication (2FA) : Plugin registration fixes and minor warning fixes.
703
+
704
+ = 4.6.1 =
705
+ * Google Authenticator - Two Factor Authentication (2FA) : Login error fix. Please skip version 4.5.9 and update to version 4.6.1
706
+
707
+ = 4.5.9 =
708
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes for customers who were getting redirected to the login page after the two factor authentication.
709
+
710
+ = 4.5.8 =
711
+ * Google Authenticator - Two Factor Authentication (2FA) : Tested upto 4.9.4 and Removed External links.
712
+
713
+ = 4.5.7 =
714
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor bug fixes.
715
+
716
+ = 4.5.6 =
717
+ * Google Authenticator - Two Factor Authentication (2FA) : Tested upto Wordpress 4.9.
718
+
719
+ = 4.5.5 =
720
+ * Google Authenticator - Two Factor Authentication (2FA) : 404 bug fixes.
721
+
722
+ = 4.5.4 =
723
+ * Google Authenticator - Two Factor Authentication (2FA) : Better UI of Login Pages, Fixed Redirection issue. Fixed the error in the last version (4.5.3) for the customers who were getting undefined action error.
724
+
725
+ = 4.5.3 =
726
+ * Google Authenticator - Two Factor Authentication (2FA) : Changed UI of the Login Pages, Redirect to Login Page bug fixes.
727
+
728
+ = 4.5.2 =
729
+ * Google Authenticator - Two Factor Authentication (2FA) : Readme Update: Description Update
730
+
731
+ = 4.5.1 =
732
+ * Google Authenticator - Two Factor Authentication (2FA) : Updated the new Authenticator App's link and the 'How to Setup Tab' tab.
733
+
734
+ = 4.5.0 =
735
+ * Google Authenticator - Two Factor Authentication (2FA) : Fix Google Authenticator configuration issue.
736
+
737
+ = 4.4.9 =
738
+ * Google Authenticator - Two Factor Authentication (2FA) : Added Alert Message for SMS Transactions only when authentication method is OTP over SMS.
739
+
740
+ = 4.4.8 =
741
+ * Google Authenticator - Two Factor Authentication (2FA) : Added Alert Message for SMS Transactions. Fixed Remember Device flow and confliction with themes. Added support for multiple instances of wordpress.
742
+
743
+ = 4.4.7 =
744
+ * Google Authenticator - Two Factor Authentication (2FA) : Updated the error message for 2-factor configuration.
745
+
746
+ = 4.4.6 =
747
+ * Google Authenticator - Two Factor Authentication (2FA) : Instructions for login in case user get locked out.
748
+
749
+
750
+ = 4.4.5 =
751
+ * Google Authenticator - Two Factor Authentication (2FA) : Fixed the issue of session variable on the login with username page.
752
+
753
+ = 4.4.4 =
754
+ * Google Authenticator - Two Factor Authentication (2FA) : Added alert messages for OTP over SMS usages.
755
+
756
+ = 4.4.3 =
757
+ * Google Authenticator - Two Factor Authentication (2FA) : Fixed the login flow for third party Apps that supports XML-RPC.
758
+
759
+ = 4.4 =
760
+ * Google Authenticator - Two Factor Authentication (2FA):
761
+ * Compatibility with Limit Login Attempts.
762
+ * New User Interface for login.
763
+
764
+ = 4.3.1 =
765
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Compatible upto 4.7
766
+
767
+ = 4.3.0 =
768
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Updated miniOrange APIs.
769
+
770
+ = 4.2.9 =
771
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Tested upto WordPress 4.6.
772
+
773
+ = 4.2.7 =
774
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Session Warnig fix in the last version for some of the users.
775
+
776
+ = 4.2.6 =
777
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Compatible with wordpress caching.
778
+
779
+ = 4.2.5 =
780
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Improved the session handler.
781
+
782
+ = 4.2.4 =
783
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Updated faq for limit login attempt type of plugins.
784
+
785
+ = 4.2.3 =
786
+ * Google Authenticator - Two Factor Authentication ( 2FA ):
787
+ * Improved Error handling during Account Creation.
788
+
789
+ = 4.2.2 =
790
+ * Google Authenticator - Two Factor Authentication ( 2FA ):
791
+ * Registration Flow fixes
792
+
793
+ = 4.2.1 =
794
+ * Google Authenticator - Two Factor Authentication ( 2FA ):
795
+ * Change of status during login with phone flow and tested with WP 4.5
796
+
797
+ = 4.2.0 =
798
+ * Google Authenticator - Two Factor Authentication ( 2FA ):
799
+ * Mark as tested on Wordpress 4.5
800
+
801
+ = 4.1.8 =
802
+ * Google Authenticator - Two Factor Authentication ( 2FA ):
803
+ * Changed the location of images used for demo. Now being loaded from the site having SSL certificate.
804
+
805
+ = 4.1.7 =
806
+ * Google Authenticator - Two Factor Authentication ( 2FA ):
807
+ * Improved Error Handling for Remember Device.
808
+
809
+ = 4.1.6 =
810
+ * Google Authenticator - Two Factor Authentication ( 2FA ):
811
+ * Licensing Plan Updated.
812
+
813
+ = 4.1.5 =
814
+ * Google Authenticator - Two Factor Authentication ( 2FA ):
815
+ * Added Forgot Password functionality for miniOrange customer admin.
816
+ * Added warning message for the users who are using lower version of php.
817
+ * Added functionlity to change the customer email.
818
+
819
+ = 4.1.4 =
820
+ * Google Authenticator - Two Factor Authentication ( 2FA ):
821
+ * Added an option for admin to enable or disable login for XML-RPC supported applications.
822
+
823
+ = 4.1.3 =
824
+ * Google Authenticator - Two Factor Authentication ( 2FA ):
825
+ * Fixed CSS Conflict with the plugins in the admin dashboard.
826
+ * More intuitive UI for woocommerce login.
827
+ * Tested front-end login with themes like wordpress default theme,
828
+ customizr theme,zerif-lite theme,accesspress store theme,ishop theme and many more.
829
+
830
+ = 4.1.2 =
831
+ * Google Authenticator - Two Factor Authentication ( 2FA ): Google Authenticator for Windows phone
832
+ * Fixed CSS conflict with front-end of site if woocommerce is not enabled.
833
+
834
+ = 4.1.1 =
835
+ * Google Authenticator - Two Factor Authentication ( 2FA ): Adding Validation in choosing Security Questions (KBA).
836
+
837
+ = 4.1.0 =
838
+ * Google Authenticator - Two Factor Authentication ( 2FA ): Features added.
839
+ multisite support
840
+ Custom login redirection
841
+ Authy 2-Factor Authentication as separate authentication method
842
+
843
+ = 4.0.5 = Login into third party apps which support XML-RPC.
844
+
845
+ = 4.0.4 = Added a check of KBA configuration from mobile login.
846
+
847
+ = 4.0.3 = Added Support for Authy 2-Factor Authentication App.
848
+
849
+ = 4.0.2 = Added a check for selection of unique questions during KBA setup.
850
+
851
+ = 4.0.1 = Bug Fix
852
+
853
+ = 4.0 =
854
+ * Two Factor Authentication ( 2FA ): Features added.
855
+ * KBA as backup method.
856
+ * mobile browser support.
857
+ * more intuitive UI for woocommerce login.
858
+
859
+ = 3.8 =
860
+ * Two Factor Authentication ( 2FA ): Bug Fix.
861
+
862
+ = 3.7 =
863
+ * Two Factor Authentication ( 2FA ): Activation of two factor role wise.
864
+
865
+ = 3.6 =
866
+ * Two Factor Authentication ( 2FA ): email verification in inline registration flow for all users.
867
+ More descriptive setup messages and UI changes.
868
+
869
+ = 3.5 =
870
+ * Two Factor Authentication ( 2FA ): Provided mobile login support.
871
+
872
+ = 3.4 =
873
+ * Two Factor Authentication ( 2FA ): Features added
874
+ * Inline registration flow for users.
875
+ * Security Questions (KBA) as additional method
876
+ * Alternate way of user identification in customer creation.
877
+ * premium customizable features.
878
+
879
+ = 3.3 =
880
+ * Two Factor Authentication ( 2FA ): Fix the issue of session for some versions of php.
881
+
882
+ = 3.2 =
883
+ * Two Factor Authentication ( 2FA ): Fix for device-id compatibility.
884
+
885
+ = 3.1 =
886
+ * Two Factor Authentication ( 2FA ): Fix for 2FA ShortCode.
887
+
888
+ = 3.0 =
889
+ * Two Factor Authentication ( 2FA ): Features added
890
+ * Google Authenticator.
891
+ * Device Id (Remember device).
892
+ * Choice given to admin to enable specific authentication methods for users.
893
+ * Two Factor support for woocommerce theme.
894
+ * Short Code for various customized frontend login.
895
+ * More intuitive UI and descriptive instructions.
896
+
897
+ = 2.6 =
898
+ * Two Factor Authentication ( 2FA ): Fix the compatibility issues of user session with other security plugins.
899
+
900
+ = 2.5 =
901
+ * Two Factor Authentication ( 2FA ): Fix the compatibility issues with All In One WP Security & Firewall plugin.
902
+
903
+ = 2.4 =
904
+ * Two Factor Authentication ( 2FA ): UI fixes for admin media library dashboard.
905
+
906
+ = 2.3 =
907
+ * Two Factor Authentication ( 2FA ): More descriptive setup messages, more intuitive UI.
908
+
909
+ = 2.2 =
910
+ * Two Factor Authentication ( 2FA ): Fixed css issues for existing users
911
+
912
+ = 2.1 =
913
+ * Two Factor Authentication ( 2FA ): Added support for multiple Two Factor Choices like OTP Over SMS, Phone Call Verification, Push Notification, Soft Token (like Google Authenticator Code), Email Verification, etc.
914
+
915
+ = 2.0 =
916
+ * Two Factor Authentication ( 2FA ): Added login with password plus second factor feature.
917
+
918
+ = 1.8 =
919
+ * Two Factor Authentication ( 2FA ): Added feature of different login form choice,test authentication and help for configuration and setup.
920
+
921
+ = 1.7 =
922
+ * Bug Fixes Two Factor Authentication ( 2FA ): Modifying login screen adaptable to user's login form
923
+
924
+ = 1.6 =
925
+ * Bug Fixes Two Factor Authentication ( 2FA ): fetching 2 factor configuration when activating the plugin after deactivating it.
926
+
927
+ = 1.5 =
928
+ * Bug Fixes Two Factor Authentication ( 2FA ): Login issues and password save issues resolved
929
+
930
+ = 1.4 =
931
+ * Bug Fixes Two Factor Authentication ( 2FA ): Authentication was not working on some version of php.
932
+
933
+ = 1.3 =
934
+ * Bug Fixes
935
+
936
+ = 1.2 =
937
+ * Two Factor Authentication ( 2FA ): Added 2 factor for all users along with forgot phone functionality.
938
+
939
+ = 1.1 =
940
+ * Two Factor Authentication ( 2FA ): Added email ID verification during registration.
941
+
942
+ = 1.0.0 =
943
+ * First version of Two Factor Authentication ( 2FA ) plugin supported with mobile auhthentication for admin only.
944
+
945
+ == Upgrade Notice ==
946
+
947
+ = 5.4.29 =
948
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
949
+ * Session independent Google Authenticator
950
+ * Session independent KBA
951
+ * Feedback improvement for two factor authentication plugin
952
+
953
+ = 5.4.28 =
954
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
955
+ * New year sale update
956
+
957
+ = 5.4.27 =
958
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
959
+ * New year sale
960
+ * WordPress 5.6 compatibility fix
961
+ * WAF fixes
962
+ * Real time IP blocking
963
+ * IP based user login
964
+ * New feature release notification
965
+
966
+ = 5.4.26 =
967
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
968
+ * Christmas Offer
969
+
970
+ = 5.4.25 =
971
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
972
+ * OTP over Telegram Fixes
973
+
974
+ = 5.4.24 =
975
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
976
+ * OTP over Whatsapp
977
+ * OTP over Telegram
978
+ * Feedback form changes
979
+
980
+ = 5.4.23 =
981
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
982
+ * Call support with technical team
983
+ * Email and SMS transaction sync
984
+ * Feedback form on network deactivate
985
+ * Enable/Disable 2FA fix
986
+ * 2FA added for superadmin role
987
+
988
+ = 5.4.22 =
989
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
990
+ * Backup Codes
991
+ * Sanitization and JS improvements
992
+ * SMS and Email Sync
993
+ * Whatsapp based Two factor in Premium plugin
994
+ * Telegram based Two factor in Premium plugin
995
+
996
+ = 5.4.21 =
997
+ * Google Authenticator - Two Factor Authentication (2FA, SMS) :
998
+ * Sanitization of some input values.
999
+
1000
+ = 5.4.20 =
1001
+ * Google Authenticator - Two Factor Authentication (2FA, SMS) :
1002
+ * Google Authenticator Qr code fix.
1003
+ * My theme login Login fix.
1004
+
1005
+ = 5.4.19 =
1006
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) : Google Authenticator cloud fix.
1007
+
1008
+ = 5.4.18 =
1009
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
1010
+ * Added missing file
1011
+
1012
+ = 5.4.17 =
1013
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
1014
+ *Digimember Form Support
1015
+ *Memberpress Form Support
1016
+ *SMS Verification Support
1017
+ *OTP Verification on Woocommerce Registration
1018
+
1019
+ = 5.4.16 =
1020
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) : Quick form fix.
1021
+
1022
+ = 5.4.15 =
1023
+ * Google Authenticator - Two Factor Authentication (2FA, OTP) :
1024
+ * Theme My Login plugin Support
1025
+ * Ultimate Memember Registration Support
1026
+ * Woocommerce Registration Support
1027
+ * Ultimate Memember Redirect
1028
+ * Restrict Content Pro Login and Registration
1029
+
1030
+ = 5.4.14 =
1031
+ * Google Authenticator - Two Factor Authentication (2FA, MFA) : Performance improvement with fixes in Security Questions. And User Email verification and Phone Verification issues resolved.
1032
+
1033
+ = 5.4.13 =
1034
+ * Google Authenticator - Two Factor Authentication (2FA, TFA) : Support Form Improvement.
1035
+
1036
+ = 5.4.11 =
1037
+ * Google Authenticator - Two Factor Authentication (2FA, MFA) : Feedback Issue fix.
1038
+
1039
+ = 5.4.9 =
1040
+ * Google Authenticator - Two Factor Authentication (2FA, TFA) : User Experience, new support form and Security disabled by default. Added New Methods for users to choose.
1041
+
1042
+ = 5.4.8 =
1043
+ * Google Authenticator - Two Factor Authentication (2FA, OTP Verification) : Learning Management System support, Microsoft Authenticator and Duo Authenticator support and restrict account sharing add-on.
1044
+
1045
+ = 5.4.7 =
1046
+ * Google Authenticator - Two Factor Authentication (2FA, SMS Verification) : Fixing warnings and adding minor changes in the plans.
1047
+
1048
+ = 5.4.6 =
1049
+ * Google Authenticator - Two Factor Authentication (2FA) : Improving Google Authenticator and adding Payment options.
1050
+
1051
+ = 5.4.5 =
1052
+ * Google Authenticator - Two Factor Authentication (2FA) : Security and MFA UI updates.
1053
+
1054
+ = 5.4.4 =
1055
+ * Google Authenticator - Two Factor Authentication (2FA) : Two Factor : Woocommerce login page integration.
1056
+
1057
+ = 5.4.3 =
1058
+ * Google Authenticator - Two Factor Authentication (2FA) : Session issue fix for customers using Two Factor.
1059
+
1060
+ = 5.4.2 =
1061
+ * Google Authenticator - Two Factor Authentication (2FA) : Warning for cloud customer moving to on-premise Two factor
1062
+
1063
+ = 5.4.0 =
1064
+ * Google Authenticator - Two Factor Authentication (2FA) : Two Factor FAQ Fix and OTP code convinence.
1065
+
1066
+ = 5.3.26 =
1067
+ * Google Authenticator - Two Factor Authentication (2FA) : Two Factor On-premise FAQ update.
1068
+
1069
+ = 5.3.25 =
1070
+ * Google Authenticator - Two Factor Authentication (2FA) : Two Factor On-premise support form.
1071
+
1072
+ = 5.3.24 =
1073
+ * Google Authenticator - Two Factor Authentication (2FA) : On-premise two factor released with multiple user support for some authentication methods.
1074
+
1075
+ = 5.3.23 =
1076
+ * Google Authenticator - Two Factor Authentication (2FA) : Scanner : Timing and caching issue fix.
1077
+ * Disable 2fa on Woocommerce login.
1078
+ * Login with Username only fix.
1079
+
1080
+ = 5.3.22 =
1081
+ * Google Authenticator - Two Factor Authentication (2FA) : Antivirus : Fixing Cache issues and adding nonce.
1082
+
1083
+ = 5.3.21 =
1084
+ * Google Authenticator - Two Factor Authentication (2FA) : Two Factor : Choice between Two factor and Security.
1085
+
1086
+ = 5.3.20 =
1087
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti Malware : Fixing issue faced by users during scan.
1088
+
1089
+ = 5.3.19 =
1090
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Giving users choice of two factor.
1091
+
1092
+ = 5.3.18 =
1093
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus and Firewall : Fix Scan.
1094
+
1095
+ = 5.3.17 =
1096
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus : Improved Stop Scan.
1097
+
1098
+ = 5.3.16 =
1099
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti-Virus : Stop Scan.
1100
+
1101
+ = 5.3.15 =
1102
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti-Malware : schedule scan.
1103
+
1104
+ = 5.3.14 =
1105
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti-Malware : Adding more signatures.
1106
+
1107
+ = 5.3.13 =
1108
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : fix UI Issue and improving 2fa.
1109
+
1110
+ = 5.3.12 =
1111
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : backup table fix.
1112
+
1113
+ = 5.3.11 =
1114
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Limiting Firewall, Malware, backup and login security for users not needing it.
1115
+
1116
+ = 5.3.10 =
1117
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Moved to Old WAF version minor issues..
1118
+
1119
+ = 5.3.9 =
1120
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Web application Firewall Sql Injections report and monitoring.
1121
+
1122
+
1123
+ = 5.3.8 =
1124
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Malware Scanner Fix.
1125
+
1126
+ = 5.3.7 =
1127
+ * Google Authenticator - Two Factor Authentication (2FA) : Security : Two factor login with username fix.
1128
+
1129
+ = 5.3.6 =
1130
+ * Google Authenticator - Two Factor Authentication (2FA) : Anti virus zip file fix.
1131
+
1132
+ = 5.3.5 =
1133
+ * Google Authenticator - Two Factor Authentication (2FA) : Backup URL Fix and space issue in google authenticator.
1134
+
1135
+ = 5.3.4 =
1136
+ * Google Authenticator - Two Factor Authentication (2FA) : CSS fix for Malware Scanner, Security and firewall.
1137
+
1138
+ = 5.3.3 =
1139
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor Malware Scanner issues fix.
1140
+
1141
+ = 5.3.2 =
1142
+ * Google Authenticator - Two Factor Authentication (2FA) : File Changes.
1143
+
1144
+ = 5.3.1 =
1145
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
1146
+
1147
+ = 5.3.0 =
1148
+ * Google Authenticator - Two Factor Authentication (2FA) : Releasing Firewall with Two Factor.
1149
+
1150
+ = 5.2.6 =
1151
+ * Google Authenticator - Two Factor Authentication (2FA) : Fixed conflict and filter issues.
1152
+
1153
+ = 5.2.5 =
1154
+ * Google Authenticator - Two Factor Authentication (2FA) : Some warnings in remote post.
1155
+
1156
+ = 5.2.4 =
1157
+ * Google Authenticator - Two Factor Authentication (2FA) : Removed curl calls and unncessary files.
1158
+
1159
+ = 5.2.3 =
1160
+ * Google Authenticator - Two Factor Authentication (2FA) : Fix for some users facing issues in api calls.
1161
+
1162
+ = 5.2.2 =
1163
+ * Google Authenticator - Two Factor Authentication (2FA) : Adding File Protection and Strong Password feature.
1164
+
1165
+ = 5.2.1 =
1166
+ * Google Authenticator - Two Factor Authentication (2FA) : UI changes for description.
1167
+
1168
+ = 5.2.0 =
1169
+ * Google Authenticator - Two Factor Authentication (2FA) : UI changes with more description.
1170
+
1171
+ = 5.1.22 =
1172
+ * Google Authenticator - Two Factor Authentication (2FA) : UI Fixes.
1173
+
1174
+ = 5.1.21 =
1175
+ * Google Authenticator - Two Factor Authentication (2FA) : Login Redirect.
1176
+
1177
+ = 5.1.20 =
1178
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix.
1179
+
1180
+ = 5.1.19 =
1181
+ * Google Authenticator - Two Factor Authentication (2FA) : Adding basic Security Features Monitorning, IP blocking and login transaction report.
1182
+
1183
+ = 5.1.18 =
1184
+ * Google Authenticator - Two Factor Authentication (2FA) : Object access error for lower PHP versions.
1185
+
1186
+ = 5.1.17 =
1187
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix and Documentation changes.
1188
+
1189
+ = 5.1.16 =
1190
+ * Google Authenticator - Two Factor Authentication (2FA) : Login redirect fix.
1191
+
1192
+ = 5.1.15 =
1193
+ * Google Authenticator - Two Factor Authentication (2FA) : UI Fixes.
1194
+
1195
+ = 5.1.14 =
1196
+ * Google Authenticator - Two Factor Authentication (2FA) : Database Error Fix and Custom Redirect.
1197
+
1198
+ = 5.1.12 =
1199
+ * Google Authenticator - Two Factor Authentication (2FA) : Removing redundant code.
1200
+
1201
+ = 5.1.11 =
1202
+ * Google Authenticator - Two Factor Authentication (2FA) : Password Pattern Fix.
1203
+
1204
+ = 5.1.10 =
1205
+ * Google Authenticator - Two Factor Authentication (2FA) : Javascript Error fixes.
1206
+
1207
+ = 5.1.9 =
1208
+ * Google Authenticator - Two Factor Authentication (2FA) : Added visual tour and security fixes.
1209
+
1210
+ = 5.1.8 =
1211
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for Validation.
1212
+
1213
+ = 5.1.7 =
1214
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for DB error after Update.
1215
+
1216
+ = 5.1.6 =
1217
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for DB error.
1218
+
1219
+ = 5.1.5 =
1220
+ * Google Authenticator - Two Factor Authentication (2FA) : UI changes.
1221
+
1222
+ = 5.1.4 =
1223
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes for redirect to login page issues.
1224
+
1225
+ = 5.1.3 =
1226
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor bug fixes.
1227
+
1228
+ = 5.1.2 =
1229
+ * Google Authenticator - Two Factor Authentication (2FA) : Changes in registration flow.
1230
+
1231
+ = 5.1.1 =
1232
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor changes.
1233
+
1234
+ = 5.1.0 =
1235
+ * Google Authenticator - Two Factor Authentication (2FA) : Added new user plans
1236
+
1237
+ = 5.0.17 =
1238
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor Bug fix.
1239
+
1240
+ = 5.0.16 =
1241
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes.
1242
+
1243
+ = 5.0.15 =
1244
+ * Google Authenticator - Two Factor Authentication (2FA) : Added Google Authenticator option in the WP login page itself.
1245
+
1246
+ = 5.0.14 =
1247
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug Fixs.
1248
+
1249
+ = 5.0.13 =
1250
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix and code optimization.
1251
+
1252
+ = 5.0.12 =
1253
+ * Google Authenticator - Two Factor Authentication (2FA) : Added GDPR Compliance.
1254
+
1255
+ = 5.0.11 =
1256
+ * Google Authenticator - Two Factor Authentication (2FA) : Readme Update.
1257
+
1258
+ = 5.0.10 =
1259
+ * Google Authenticator - Two Factor Authentication (2FA) : Added Proxy Setup feature.
1260
+
1261
+ = 5.0.9 =
1262
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for "The loopback request to your site failed." error.
1263
+
1264
+ = 5.0.8 =
1265
+ * Google Authenticator - Two Factor Authentication (2FA) : Changes for 2FA Free plugin for 1 user forever.
1266
+
1267
+ = 5.0.7 =
1268
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for User Registration and other plugin conflicts in Dashboard.
1269
+
1270
+ = 5.0.6 =
1271
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug Fix for existing customers who upgraded from 4.5.x version to versions between 5.0.0 and 5.0.4 and are facing issues with the Account Setup Tab.
1272
+
1273
+ = 5.0.5 =
1274
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix for user entry during plugin update.
1275
+
1276
+ = 5.0.4 =
1277
+ * Google Authenticator - Two Factor Authentication (2FA) : Workaround for errors during sending of OTP during registration.
1278
+
1279
+ = 5.0.3 =
1280
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor fix for removing warings.
1281
+
1282
+ = 5.0.2 =
1283
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
1284
+
1285
+ = 5.0.1 =
1286
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fix.
1287
+
1288
+ = 5.0.0 =
1289
+ * Google Authenticator - Two Factor Authentication (2FA) : New UI Interface, 2-factor authentication for Unlimited Users.
1290
+ * This is a major release.
1291
+
1292
+ = 4.6.2 =
1293
+ * Google Authenticator - Two Factor Authentication (2FA) : Plugin registration fixes and minor warning fixes.
1294
+
1295
+ = 4.6.1 =
1296
+ * Google Authenticator - Two Factor Authentication (2FA) : Login error fix. Please skip version 4.5.9 and update to version 4.6.1
1297
+
1298
+ = 4.5.9 =
1299
+ * Google Authenticator - Two Factor Authentication (2FA) : Bug fixes for customers who were getting redirected to the login page after the two factor authentication.
1300
+
1301
+ = 4.5.8 =
1302
+ * Google Authenticator - Two Factor Authentication (2FA) : Tested upto 4.9.4 and Removed External links.
1303
+
1304
+ = 4.5.7 =
1305
+ * Google Authenticator - Two Factor Authentication (2FA) : Minor bug fixes.
1306
+
1307
+ = 4.5.6 =
1308
+ * Google Authenticator - Two Factor Authentication (2FA) : Tested upto Wordpress 4.9.
1309
+
1310
+ = 4.5.5 =
1311
+ * Google Authenticator - Two Factor Authentication (2FA) : 404 bug fixes.
1312
+
1313
+ = 4.5.4 =
1314
+ * Google Authenticator - Two Factor Authentication (2FA) : Better UI of Login Pages, Fixed Redirection issue. Fixed the error in the last version (4.5.3) for the customers who were getting undefined action error.
1315
+
1316
+ = 4.4.3 =
1317
+ * Google Authenticator - Two Factor Authentication (2FA) : Fixed the login flow for third party Apps that supports XML-RPC.
1318
+
1319
+ = 4.4 =
1320
+ * Google Authenticator - Two Factor Authentication (2FA):
1321
+ * Note: This is very important update having altogether new UI and compatibility with Limit Login Attempts. After updating, please do not logout from your admin dashboard. Try to login from another browser and if you face any issue , please contact us at info@miniorange.com
1322
+ * Compatibility with Limit Login Attempts.
1323
+ * New User Interface for login.
1324
+
1325
+ = 4.3.2 =
1326
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Revised licensing cost for users.
1327
+
1328
+ = 4.3.1 =
1329
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Compatible upto 4.7
1330
+
1331
+ = 4.3.0 =
1332
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Updated miniOrange APIs.
1333
+
1334
+ = 4.2.9 =
1335
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Tested upto WordPress 4.6.
1336
+
1337
+ = 4.2.7 =
1338
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Session Warnig fix in the last version for some of the users.
1339
+
1340
+ = 4.2.6 =
1341
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Compatible with wordpress caching.
1342
+
1343
+ = 4.2.5 =
1344
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Improved the session handler.
1345
+
1346
+ = 4.2.4 =
1347
+ * Google Authenticator - Two Factor Authentication (2FA, MFA): Updated faq for limit login attempt type of plugins.
1348
+
1349
+ = 4.2.3 =
1350
+ * Two Factor Authentication ( 2FA ):
1351
+ * Improved Error handling during Account Creation.
1352
+
1353
+ = 4.2.2 =
1354
+ * Two Factor Authentication ( 2FA ):
1355
+ * Registration Flow fixes
1356
+
1357
+ = 4.2.1 =
1358
+ * Two Factor Authentication ( 2FA ):
1359
+ * Change of status during login with phone flow and tested with WP 4.5
1360
+
1361
+ = 4.2.0 =
1362
+ * Two Factor Authentication ( 2FA ):
1363
+ * Mark as tested on Wordpress 4.5
1364
+
1365
+ = 4.1.8 =
1366
+ * Two Factor Authentication ( 2FA ):
1367
+ * Changed the location of images used for demo. Now being loaded from the site having SSL certificate.
1368
+
1369
+ = 4.1.7 =
1370
+ * Two Factor Authentication ( 2FA ):
1371
+ * Improved Error Handling for Remember Device.
1372
+
1373
+ = 4.1.6 =
1374
+ * Two Factor Authentication ( 2FA ):
1375
+ * Licensing Plan Updated.
1376
+
1377
+ = 4.1.5 =
1378
+ * Two Factor Authentication ( 2FA ):
1379
+ * Added Forgot Password functionality for miniOrange customer admin.
1380
+ * Added warning message for the users who are using lower version of php.
1381
+ * Added functionality to change the customer email.
1382
+
1383
+ = 4.1.4 =
1384
+ * Two Factor Authentication ( 2FA ):
1385
+ * Added an option for admin to enable or disable login for XML-RPC supported applications.
1386
+
1387
+ = 4.1.3 =
1388
+ * Two Factor Authentication ( 2FA ):
1389
+ * Fixed CSS Conflict with the plugins in the admin dashboard.
1390
+ * More intuitive UI for woocommerce login.
1391
+ * Tested front-end login with themes like wordpress default theme,
1392
+ customizr theme,zerif-lite theme,accesspress store theme,ishop theme and many more.
1393
+
1394
+ = 4.1.2 =
1395
+ * Two Factor Authentication ( 2FA ): Google Authenticator for Windows phone
1396
+ * Fixed CSS conflict with front-end of site if woocommerce is not enabled.
1397
+
1398
+ = 4.1.1 =
1399
+ * Two Factor Authentication ( 2FA ): Adding Validation in choosing Security Questions (KBA).
1400
+
1401
+ = 4.1.0 =
1402
+ * Two Factor Authentication ( 2FA ): Features added.
1403
+ multisite support
1404
+ Custom login redirection
1405
+ Authy 2-Factor Authentication as separate authentication method
1406
+
1407
+ = 4.0.6 = Added multisite support and custom redirection after login feature.
1408
+
1409
+ = 4.0.5 = Login into third party apps which support XML-RPC.
1410
+
1411
+ = 4.0.4 = Added a check of KBA configuration from mobile login.
1412
+
1413
+ = 4.0.3 = Added Support for Authy 2-Factor Authentication App.
1414
+
1415
+ = 4.0.2 = Added a check for selection of unique questions during KBA setup.
1416
+
1417
+ = 4.0.1 = Bug Fix
1418
+
1419
+ = 4.0 =
1420
+ * Two Factor Authentication ( 2FA ): Features added.
1421
+ * KBA as backup method.
1422
+ * mobile browser support.
1423
+ * more intuitive UI for woocommerce login.
1424
+
1425
+ = 3.8 =
1426
+ * Two Factor Authentication ( 2FA ): Bug Fix for roles.
1427
+
1428
+ = 3.7 =
1429
+ * Two Factor Authentication ( 2FA ): Activation of two factor role wise.
1430
+
1431
+ = 3.6 =
1432
+ * Two Factor Authentication ( 2FA ): email verification in inline registration flow for all users.
1433
+ More descriptive setup messages and UI changes.
1434
+
1435
+ = 3.5 =
1436
+ * Two Factor Authentication ( 2FA ): Provided mobile login support.
1437
+
1438
+ = 3.4 =
1439
+ * Two Factor Authentication ( 2FA ): Features added
1440
+ * Inline registration flow for users.
1441
+ * Security Questions (KBA) as additional method
1442
+ * Alternate way of user identification in customer creation.
1443
+ * premium customizable features.
1444
+
1445
+ = 3.3 =
1446
+ * Two Factor Authentication ( 2FA ): Fix the issue of session for some versions of php.
1447
+
1448
+ = 3.2 =
1449
+ * Two Factor Authentication ( 2FA ): Fix for device-id compatibility.
1450
+
1451
+ = 3.1 =
1452
+ * Two Factor Authentication ( 2FA ): Fix for 2FA ShortCode.
1453
+
1454
+ = 3.0 =
1455
+ * Two Factor Authentication ( 2FA ): Features added
1456
+ * Google Authenticator.
1457
+ * Device Id (Remember device).
1458
+ * Choice given to admin to enable specific authentication methods for users.
1459
+ * Two Factor support for woocommerce theme.
1460
+ * Short Code for various customized fronted login.
1461
+ * More intuitive UI and descriptive instructions.
1462
+
1463
+ = 2.6 =
1464
+ * Two Factor Authentication ( 2FA ): Fix the compatibility issues of user session with other security plugins.
1465
+
1466
+ = 2.5 =
1467
+ * Two Factor Authentication ( 2FA ): Fix the compatibility issues with All In One WP Security & Firewall plugin.
1468
+
1469
+ = 2.4 =
1470
+ * Two Factor Authentication ( 2FA ): UI fixes for admin media library dashboard.
1471
+
1472
+ = 2.3 =
1473
+ * Two Factor Authentication ( 2FA ): More descriptive setup messages, more intuitive UI.
1474
+
1475
+ = 2.2 =
1476
+ * Two Factor Authentication ( 2FA ): Fixed css issues for existing users
1477
+
1478
+ = 2.1 =
1479
+ * Two Factor Authentication ( 2FA ): Added support for multiple Two Factor Choices like OTP Over SMS, Phone Call Verification, Push Notification, Soft Token (like Google Authenticator Code), Email Verification, etc.
1480
+
1481
+ = 2.0 =
1482
+ * Two Factor Authentication ( 2FA ): Added login with password plus second factor feature.
1483
+
1484
+ = 1.8 =
1485
+ * Two Factor Authentication ( 2FA ): Added feature of different login form choice,test authentication and help for configuration and setup.
1486
+
1487
+ = 1.7 =
1488
+ * Bug Fixes Two Factor Authentication ( 2FA ): Modifying login screen adaptable to user's login form
1489
+
1490
+ = 1.6 =
1491
+ * Bug Fixes Two Factor Authentication ( 2FA ): fetching 2 factor configuration when activating the plugin after deactivating it.
1492
+
1493
+ = 1.5 =
1494
+ * Bug Fixes Two Factor Authentication ( 2FA ): Login issues and password save issues resolved
1495
+
1496
+ = 1.4 =
1497
+ * Bug Fixes Two Factor Authentication ( 2FA ): Authentication was not working on some version of php.
1498
+
1499
+ = 1.3 =
1500
+ * Bug Fixes
1501
+
1502
+ = 1.2 =
1503
+ * Two Factor Authentication ( 2FA ): Added 2 factor for all users along with forgot phone functionality.
1504
+
1505
+ = 1.1 =
1506
+ * Two Factor Authentication ( 2FA ): Added email ID verification during registration.
1507
+
1508
+ = 1.0.0 =
1509
+ First version of Two Factor Authentication ( 2FA ) plugin.
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
views/twofa/setup/setup_google_authenticator.php CHANGED
@@ -1,9 +1,12 @@
1
  <?php
2
 
3
  function mo2f_configure_google_authenticator( $user ) {
4
- $mo2f_google_auth = isset( $_SESSION['mo2f_google_auth'] ) ? $_SESSION['mo2f_google_auth'] : null;
5
- $data = isset( $_SESSION['mo2f_google_auth'] ) ? $mo2f_google_auth['ga_qrCode'] : null;
6
- $ga_secret = isset( $_SESSION['mo2f_google_auth'] ) ? $mo2f_google_auth['ga_secret'] : null;
 
 
 
7
  $h_size = 'h3';
8
  $gauth_name= get_option('mo2f_google_appname');
9
  $gauth_name = $gauth_name ? $gauth_name : 'miniOrangeAu';
@@ -104,7 +107,7 @@ function mo2f_configure_google_authenticator( $user ) {
104
  <td class="mo2f_google_authy_step3">
105
  <h4><?php echo '<' . $h_size . '>' . mo2f_lt( 'Step-2: Verify and Save' ) . '</' . $h_size . '>';; ?></h4>
106
  <hr>
107
- <div style="<?php echo isset( $_SESSION['mo2f_google_auth'] ) ? 'display:block' : 'display:none'; ?>">
108
  <div><?php echo mo2f_lt( 'After you have scanned the QR code and created an account, enter the verification code from the scanned account here.' ); ?></div>
109
  <br>
110
  <form name="f" method="post" action="">
1
  <?php
2
 
3
  function mo2f_configure_google_authenticator( $user ) {
4
+ // $mo2f_google_auth = isset( $_SESSION['mo2f_google_auth'] ) ? $_SESSION['mo2f_google_auth'] : null;
5
+ // $data = isset( $_SESSION['mo2f_google_auth'] ) ? $mo2f_google_auth['ga_qrCode'] : null;
6
+ // $ga_secret = isset( $_SESSION['mo2f_google_auth'] ) ? $mo2f_google_auth['ga_secret'] : null;
7
+ $mo2f_google_auth = get_user_meta($user->ID, 'mo2f_google_auth', true);
8
+ $data = isset($mo2f_google_auth['ga_qrCode']) ? $mo2f_google_auth['ga_qrCode'] : null;
9
+ $ga_secret = isset($mo2f_google_auth['ga_secret']) ? $mo2f_google_auth['ga_secret'] : null;
10
  $h_size = 'h3';
11
  $gauth_name= get_option('mo2f_google_appname');
12
  $gauth_name = $gauth_name ? $gauth_name : 'miniOrangeAu';
107
  <td class="mo2f_google_authy_step3">
108
  <h4><?php echo '<' . $h_size . '>' . mo2f_lt( 'Step-2: Verify and Save' ) . '</' . $h_size . '>';; ?></h4>
109
  <hr>
110
+ <div style="<?php echo isset( $mo2f_google_auth ) ? 'display:block' : 'display:none'; ?>">
111
  <div><?php echo mo2f_lt( 'After you have scanned the QR code and created an account, enter the verification code from the scanned account here.' ); ?></div>
112
  <br>
113
  <form name="f" method="post" action="">
views/twofa/setup/setup_google_authenticator_onpremise.php CHANGED
@@ -1,6 +1,6 @@
1
  <?php
2
 
3
- function mo2f_configure_google_authenticator_onprem( $secret,$url,$otpcode ) {
4
  $h_size = 'h3';
5
  $gauth_name= get_option('mo2f_google_appname');
6
  $gauth_name = $gauth_name ? $gauth_name : 'miniOrangeAu';
@@ -116,6 +116,7 @@ function mo2f_configure_google_authenticator_onprem( $secret,$url,$otpcode ) {
116
  style="width:95%;"/></span><br><br>
117
 
118
  <input type="hidden" name="option" value="mo2f_configure_google_authenticator_validate"/>
 
119
  <input type="hidden" name="mo2f_configure_google_authenticator_validate_nonce"
120
  value="<?php echo wp_create_nonce( "mo2f-configure-google-authenticator-validate-nonce" ) ?>"/>
121
  <input type="submit" name="validate" id="SaveOTPGATour" class="mo_wpns_button mo_wpns_button1"
1
  <?php
2
 
3
+ function mo2f_configure_google_authenticator_onprem( $secret,$url,$otpcode, $session_id_encrypt ) {
4
  $h_size = 'h3';
5
  $gauth_name= get_option('mo2f_google_appname');
6
  $gauth_name = $gauth_name ? $gauth_name : 'miniOrangeAu';
116
  style="width:95%;"/></span><br><br>
117
 
118
  <input type="hidden" name="option" value="mo2f_configure_google_authenticator_validate"/>
119
+ <input type="hidden" name="mo2f_session_id" value="<?php echo $session_id_encrypt ?>">
120
  <input type="hidden" name="mo2f_configure_google_authenticator_validate_nonce"
121
  value="<?php echo wp_create_nonce( "mo2f-configure-google-authenticator-validate-nonce" ) ?>"/>
122
  <input type="submit" name="validate" id="SaveOTPGATour" class="mo_wpns_button mo_wpns_button1"
views/twofa/setup_twofa.php CHANGED
@@ -49,9 +49,9 @@
49
  if ( get_user_meta( $user->ID, 'configure_2FA', true ) ) {
50
 
51
  $current_selected_method = get_user_meta( $user->ID, 'mo2f_2FA_method_to_configure', true );
52
- echo '<div class="mo_wpns_setting_layout">';
53
  mo2f_show_2FA_configuration_screen( $user, $current_selected_method );
54
- echo '</div>';
55
  } else if ( get_user_meta( $user->ID, 'test_2FA', true ) ) {
56
  $current_selected_method = get_user_meta( $user->ID, 'mo2f_2FA_method_to_test', true );
57
  echo '<div class="mo_wpns_setting_layout">';
@@ -191,7 +191,7 @@
191
 
192
 
193
  <?php
194
- if((!get_user_meta($userID, 'mo_backup_code_generated', true) || ($backup_codes_remaining == 5 && !get_user_meta($userID, 'mo_backup_code_downloaded', true))) && $mo2f_two_fa_method != ''){
195
  ?>
196
  <button class="btn btn-primary btn-large" id="mo_2f_generate_codes" style="float:right; margin-right: 3%; height: 36px;">Get backup codes
197
  </button>
49
  if ( get_user_meta( $user->ID, 'configure_2FA', true ) ) {
50
 
51
  $current_selected_method = get_user_meta( $user->ID, 'mo2f_2FA_method_to_configure', true );
52
+ // echo '<div class="mo_wpns_setting_layout">';
53
  mo2f_show_2FA_configuration_screen( $user, $current_selected_method );
54
+ // echo '</div>';
55
  } else if ( get_user_meta( $user->ID, 'test_2FA', true ) ) {
56
  $current_selected_method = get_user_meta( $user->ID, 'mo2f_2FA_method_to_test', true );
57
  echo '<div class="mo_wpns_setting_layout">';
191
 
192
 
193
  <?php
194
+ if((!get_user_meta($user->ID, 'mo_backup_code_generated', true) || ($backup_codes_remaining == 5 && !get_user_meta($user->ID, 'mo_backup_code_downloaded', true))) && $mo2f_two_fa_method != ''){
195
  ?>
196
  <button class="btn btn-primary btn-large" id="mo_2f_generate_codes" style="float:right; margin-right: 3%; height: 36px;">Get backup codes
197
  </button>
views/twofa/test/test_twofa_kba_questions.php CHANGED
@@ -1,4 +1,6 @@
1
- <?php function mo2f_test_kba_security_questions( $user ) { ?>
 
 
2
 
3
  <h3><?php echo mo2f_lt( 'Test Security Questions( KBA )' ); ?></h3>
4
  <hr>
@@ -11,8 +13,8 @@
11
  value="<?php echo wp_create_nonce( "mo2f-validate-kba-details-nonce" ) ?>"/>
12
 
13
  <div id="mo2f_kba_content">
14
- <?php if ( isset( $_SESSION['mo_2_factor_kba_questions'] ) ) {
15
- echo $_SESSION['mo_2_factor_kba_questions'][0]['question'];
16
  ?>
17
  <br>
18
  <input class="mo2f_table_textbox" style="width:227px;" type="text" name="mo2f_answer_1"
@@ -21,7 +23,7 @@
21
  title="Only alphanumeric letters with special characters(_@.$#&amp;+-) are allowed."
22
  autocomplete="off"><br><br>
23
  <?php
24
- echo $_SESSION['mo_2_factor_kba_questions'][1]['question'];
25
  ?>
26
  <br>
27
  <input class="mo2f_table_textbox" style="width:227px;" type="text" name="mo2f_answer_2"
1
+ <?php function mo2f_test_kba_security_questions( $user ) {
2
+ $questions = get_user_meta($user->ID, 'mo_2_factor_kba_questions', true);
3
+ ?>
4
 
5
  <h3><?php echo mo2f_lt( 'Test Security Questions( KBA )' ); ?></h3>
6
  <hr>
13
  value="<?php echo wp_create_nonce( "mo2f-validate-kba-details-nonce" ) ?>"/>
14
 
15
  <div id="mo2f_kba_content">
16
+ <?php if ( isset( $questions ) ) {
17
+ echo $questions[0]['question'];
18
  ?>
19
  <br>
20
  <input class="mo2f_table_textbox" style="width:227px;" type="text" name="mo2f_answer_1"
23
  title="Only alphanumeric letters with special characters(_@.$#&amp;+-) are allowed."
24
  autocomplete="off"><br><br>
25
  <?php
26
+ echo $questions[1]['question'];
27
  ?>
28
  <br>
29
  <input class="mo2f_table_textbox" style="width:227px;" type="text" name="mo2f_answer_2"