diff --git a/docs_source_files/content/worst_practices/two_factor_authentication.zh-cn.md b/docs_source_files/content/worst_practices/two_factor_authentication.zh-cn.md index 9bab10af83a2..40b2a2fdb919 100644 --- a/docs_source_files/content/worst_practices/two_factor_authentication.zh-cn.md +++ b/docs_source_files/content/worst_practices/two_factor_authentication.zh-cn.md @@ -1,26 +1,15 @@ --- -title: "Two Factor Authentication" +title: "双因素认证" weight: 1 --- -{{% notice info %}} - Page being translated from -English to Chinese. Do you speak Chinese? Help us to translate -it by sending us pull requests! -{{% /notice %}} +双因素认证通常简写成 _2FA_ 是一种一次性密码(OTP)通常用在移动应用上例如“谷歌认证器”, +“微软认证器”等等,或者通过短信或者邮件来认证。在Selenium自动化中这些都是影响有效自动化 +的极大挑战。虽然也有一些方法可以自动化这些过程,但是同样对于Selenium自动化也引入了很多不安全因素。 +所以你应该要避免对2FA自动化。 -Two Factor Authentication shortly know as _2FA_ is a authorization -mechanism where One Time Password(OTP) is generated using "Authenticator" -mobile apps such as "Google Authenticator", "Microsoft Authenticator" -etc., or by SMS, e-mail to authenticate. Automating this seamlessly -and consistently is a big challenge in Selenium. There are some ways -to automate this process. But that will be another layer on top of our -Selenium tests and not secured as well. So, you can avoid automating 2FA. +这里有一些对于如何绕过2FA校验的建议: -There are few options to get around 2FA checks: - -* Disable 2FA for certain Users in the test environment, so that you can -use those user credentials in the automation. -* Disable 2FA in your test environment. -* Disable 2FA if you login from certain IPs. That way we can configure our -test machine IPs to avoid this. +* 在测试环境中对特定用户禁止2FA校验,这样对于这些特定用户可以直接进行自动化测试。 +* 禁止2FA校验在测试环境中。 +* 对于特定IP区域禁止2FA校验,这样我们可以配置测试机器的IP在这些白名单区域中。