{"id":19081511,"url":"https://github.com/intracto/umbracotwofactor","last_synced_at":"2025-07-23T20:04:38.708Z","repository":{"id":40894683,"uuid":"234324343","full_name":"Intracto/UmbracoTwoFactor","owner":"Intracto","description":"A 2fa authentication package for Umbraco 8","archived":false,"fork":false,"pushed_at":"2022-12-08T04:36:05.000Z","size":50,"stargazers_count":1,"open_issues_count":4,"forks_count":0,"subscribers_count":4,"default_branch":"master","last_synced_at":"2025-02-22T06:13:38.171Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"C#","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Intracto.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-01-16T13:19:45.000Z","updated_at":"2020-01-17T08:13:53.000Z","dependencies_parsed_at":"2023-01-24T15:45:31.633Z","dependency_job_id":null,"html_url":"https://github.com/Intracto/UmbracoTwoFactor","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/Intracto/UmbracoTwoFactor","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Intracto%2FUmbracoTwoFactor","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Intracto%2FUmbracoTwoFactor/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Intracto%2FUmbracoTwoFactor/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Intracto%2FUmbracoTwoFactor/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Intracto","download_url":"https://codeload.github.com/Intracto/UmbracoTwoFactor/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Intracto%2FUmbracoTwoFactor/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":265327444,"owners_count":23747754,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-09T02:36:36.950Z","updated_at":"2025-07-23T20:04:38.660Z","avatar_url":"https://github.com/Intracto.png","language":"C#","funding_links":[],"categories":[],"sub_categories":[],"readme":"This package works on Umbraco 8.1.0 or higher.\n\n# Installation\nThe recommended way to install the package is via nuget.\nIf you install the package via nuget, nuget will handle all the configuration during installation.\n\nThe package can be installed as an Umbraco Package as well, we recommend to install the package this way only if fore some reason nuget is not available.\nThe package has a dependency for another nuget package, in the umbraco package the dll of this dependency is just copied in.\nThis is not a clean way of installing packages and can be a mess if you would want to update this dependency without updating the package.\n\n# How to use\nFirst, if you want to enable 2fa on your Umbraco site, you'll need to add the special 2fa section to the user roles that you want to be able to control the 2fa settings of the site.\nIn this section you can remove configured 2fa from other users and you can set the permission about 2fa for other user roles.\nA user is only allowed to add 2fa to his account if he has a user role that has a form of 2fa allowed in the permission screen.\nIf a user has a role that has 2fa required, he will be prompted to add a 2fa device during his next login and cannot continue without enabling 2fa.\n\nIn the register screen a user can add 2fa to his account.\nIn the manage 2fa screen a user can manage his 2fa devices and remove devices that he doesn't use anymore.\nIf a user removes all his devices, 2fa will be disabled again for this user until a new device is added.\n\nWe recommend always using the mobile app as it is the safest protocol for 2fa and is the hardest to intercept.\n\n# Configuration\nThis package has some settings about the package that can be configured.\nThese options can be found in the config file located at `App_Plugins/TwoFactor/TwoFactor.config`.\n\n- appName: You should enter the name of the website here. This name is what people will see on their 2fa app if the scan a QR code.\n\n- pageSize: This is a visual only setting.\nIt sets the amount of users that appear on a single page in the 2fa section where you can reset 2fa of other users.\n\n- timeoutTime: This is the amount of minutes a user has to enter their 2fa code during login.\nIt is recommended to keep this at 5 as it is a good balance between security and ease of use\n\n- browserRememberTime: This setting is used to enable cookie authentication for the second step.\nIf you change this number to anything above 0 it will enable cookie authentication.\nThis means that users will be allowed to skip 2fa for the amount of minutes configured in this setting.\nThis setting defaults to 0 as it is the safest to always use 2fa but can be enabled for convience.\nIf you do enable it, it is recommended to keep the cookie time at a maximum of a week(10.080 minutes).\n\n- mailSettings: There are multiple mail settings, these settings are used when using mail authentication for 2fa.\n**If you want to use mail authentication you will still need to configure smtp settings in the web.config.**\nThe mail settings are pretty self explanatory.\n\"fromAddress\" is the mail address where the 2fa mail is sent from, \"subject\" is the subject of the 2fa mail and \"message\" is the content of the mail.\nThe \"message\" configuration should always contain {0} This wil be replace with the 2fa code in the actual mail.\n\n# Mail Authentication\nIf you want to be able to use mail authentication you will need to configure an smtp server yourself.\nYou can do this the same way as sending any other mail via the web.config.\nThis package uses the same settings from the web.config.\n\n# Changing the backoffice URL\nIf you changed the backoffice URL of your site you will need to change it in this package as well otherwise the package will not function anymore.\nBecause of a refresh issue during login, the package needs to know the backoffice URL.\nIf you change the URL you will need to change it in a javascript constants file as well.\nThis file is located at `App_Plugins/TwoFactor/Constants.js`.\nIn this file you will need to change `AdminURL` to the new backoffice url that you have configured.\n\n# Contribute\nIf you want to contribute to the package you can do so by making an issue on the github, or by making a pull request from your fork.\nTo use the source locally you should do the following.\nCreate a new solution in visual studio and create a new Umbraco 8 site.\nAdd the the TwoFactor folder from the testSite folder to the App_Plugins folder of your fresh Umbraco install.\nThan add the TwoFactorAuth project to your solution and add a reference to it in your Test Site.\nWhen you want to commit changes to the package you should only commit the folders that are in the github right now to keep the repository clean.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fintracto%2Fumbracotwofactor","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fintracto%2Fumbracotwofactor","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fintracto%2Fumbracotwofactor/lists"}