New System User 2FA Login

[FrederickChan]

• Enable Administration Settings to Turn this System On/Off
• Add User Settings in Edit Profile to be able to Turn this System On/Off
• Do not require 3rd party authentication tool

When turned on, the system will automatically send a new pin code to users email whenever he/she tries to login.

User can opt to exclude this by saving and authorizing the browser with a token key. If this token key is present in the browser then the 2fa system can be skipped.

[FrederickChan]

Notes:
To test the 2FA Login, you need to adjust your DB_USERS, and set 'user_pin' to 1, this signifies that the user has turned on his 2FA account safeguard.

@karrak1 has told me that the edit profile has problem for users in the latest release.
I have not committed the user fields parts in development yet, because it's still a work in big progress change. There are many structural changes.

I decided to submit to community review for the part where 2FA system has been completed for now.

Now what I will do is to fix the editprofile first, before continuing on the new user profile system. Later when I'm done, we will replace the old editprofile with the new one.

I will have 5-6 big items to commit soon..

I'll list them down here.

1. New User Group Admin - You can now delete group even with members inside, you can modify per user, and much more.
2. New Members admin
3. Update Dynamics to Twig
4. Settings/Tables config for the new upgrades for new installation.
5. Profile, Edit Profile - system adjustments. I'll put change logs later.
6. more to submit on later.

[FrederickChan]

If session time out (cookie expires), relogin with 2fa enabled will not send the 2fa OTP email. You need to click restart login on the 2fa page and login the 2nd attempt to get that email.