devise-otp
devise-otp copied to clipboard
wmlele
Two Factors authentication for Devise using Time Based OTP/rfc6238 tokens.
We are currently maintaining a fork of the `devise_google_authenticator`, but that fork is not in a very good shape and after finding this `devise-otp` gem, we would like to migrate...
Sorry this was bugging me. Basically adds extra values for the checkboxes so that I can use a bootstrap theme so I can customize it to look like this. 
The `DeviseOtpAuthenticatable::Hooks::Sessions#create_with_otp` method destroys previous data in `warden.session` when OTP challenge is required. See [sessions.rb:23](https://github.com/wmlele/devise-otp/blob/ab2a9bc154a014318cd0c3ab0d5b0b86e3de8a42/lib/devise_otp_authenticatable/hooks/sessions.rb#L23) This conflicts with many important features of Devise and related plugins, such as: - `return_to`...
Hi, I just found this gem and started reading the code. It does looks cleaner and more understandable than most I have seen. I hope you don't mins me asking...
We have noticed a number of issue regarding the flow of the MFA sign-up process when attempting to add devise-mfa to an existing Rails application using devise for authentication. for...
I might be missing something. Shouldn't the user be required to enter a valid OTP before the setting gets stored? Otherwise, they risk being locked out of their account for...
devise 4.9.4 devise-otp 0.7.1 Steps to reproduce: 1. Log into site using username/password. 2. Enter incorrect token value and press "Submit Token". 3. Receive an error message `The token you...
When installing devise-otp into a fresh Rails 7.1 project using `sprockets` for asset compilation and `importmaps`, the default included QRCode.js library does not properly operate and generate QR codes. Relevant...
Currently it is not clear (to me) how to write tests for controllers that require a user to be logged in. Is there a quick guideline or setup I can...
### On login ... If the user is `otp_mandatory` but has not yet set up OTP, they will be shown everything they need to know, set up their authenticator app,...
