https://github.com/jetrails/magento-twofactor

The JetRails 2FA plugin adds an extra layer of security to your Magento store. User based 2FA enablement ensures that admin users are following best security practices.
https://github.com/jetrails/magento-twofactor

2fa magento magento-marketplace magento-module two-factor-authentication

Last synced: 3 months ago
JSON representation

The JetRails 2FA plugin adds an extra layer of security to your Magento store. User based 2FA enablement ensures that admin users are following best security practices.

• Host: GitHub
• URL: https://github.com/jetrails/magento-twofactor
• Owner: jetrails
• License: mit
• Created: 2016-07-30T03:08:04.000Z (over 8 years ago)
• Default Branch: master
• Last Pushed: 2023-04-17T09:21:24.000Z (over 1 year ago)
• Last Synced: 2024-05-10T10:32:14.365Z (6 months ago)
• Topics: 2fa, magento, magento-marketplace, magento-module, two-factor-authentication
• Language: PHP
• Homepage: https://marketplace.magento.com/jetrails-jetrails-twofactor.html
• Size: 41.1 MB
• Stars: 8
• Watchers: 5
• Forks: 6
• Open Issues: 5
• Metadata Files:
  • Readme: README.md
  • Changelog: CHANGELOG.md
  • License: LICENSE.md

Awesome Lists containing this project

• mageres - Two-Factor Authentication Plugin - User-based 2FA enablement. (Extensions / Free)

README

        
# Magento — Two-Factor Authentication

> The JetRails 2FA plugin adds an extra layer of security to your Magento store. User based 2FA enablement ensures that admin users are following best security practices.

![](https://img.shields.io/badge/Magento-1-orange.svg?style=for-the-badge)

![](https://img.shields.io/badge/License-MIT-orange.svg?style=for-the-badge)

![](https://img.shields.io/badge/Version-1.1.4-orange.svg?style=for-the-badge)

![](https://img.shields.io/badge/Stability-Stable-orange.svg?style=for-the-badge)



	



## About

This module is available on the Magento Marketplace. The JetRails 2FA plugin adds an extra layer of security to your Magento store.  User-based 2FA enablement ensures that admin users are following best security practices. This module has the following features:

- A Master Administrator can require 2FA to be utilized by specific users.

- Usage of 2FA can be enforced and required for log in.

- Once you use the 2FA to log in, there is an option to bypass authentication for a pre-configured number of days.

- A Master Administrator can oversee every user's authentication process.

- In the event of a lost or misplaced 2FA account, backup codes are available as an alternate method for authentication.

- In the event of an attempted account breach, prevention protocols are in place via brute-force protection, which will temporarily block the account.

- The threshold for the number of failed authentication attempts before a temporary ban is imposed is configurable.

- The duration of a user's temporary ban is configurable.

- An automatic instantaneous alert will be sent to the account owner and store admins informing them of an attempted breach. Any security warning will be logged with any relevant data such as the offender's IP address.

- The 2FA account can be setup for devices (something they have) using the Google Authenticator app, which is available for every platform including iPhone and Android.

## Compatibility

Please refer to [COMPATIBILITY.md](COMPATIBILITY.md) to see which versions of Magento this extension was tested on and proved to be compatible with.

## Documentation

The user guide can be found in the [docs](docs) folder.  The user guide goes through the installation process as well as explains all the features that comes with this plugin. For furthur support, please email [[email protected]](mailto://[email protected]).

## Build System

This extension uses __Gulp__ as it's build system.  Gulp is a package that can be easily downloaded using __NPM__ or __Yarn__.  Once this repository is cloned, run `npm install gulp -g` followed by `npm install` or `yarn install` to install Gulp and all Gulp modules used within this build system.  Please refer to the following table for a description of some useful Gulp commands. A typical Gulp command takes the following form: `gulp `.

| Command   | Description                                                                             |

|-----------|-----------------------------------------------------------------------------------------|

|   `init`  | Creates build, staging, and distribution directories                                    |

|  `clean`  | Deletes build and distribution directories                                              |

|   `bump`  | Bumps version number in source files to reflect version found in package.json           |

|  `build`  | Builds and copies files from source directory to the build directory                    |

|  `deploy` | Copies files from build directory to the staging directory                              |

|  `watch`  | Watches files in source directory and executes `deploy` on file change                  |

| `package` | Updates package.xml with file hashes and packages extension into distribution directory |

## Docker Environment

This project comes with a [docker-compose.yml](docker-compose.yml) and a [docker-sync.yml](docker-sync.yml) file, which can be used to spin up a Magento 1 development environment. In order to use docker, please make sure you have **Docker**, **Docker Compose**, and **Docker Sync** installed. For information about configuring this docker environment, please refer to it's Github repository which can be found [here](https://github.com/jetrails/docker-magento-alpine).