Skip to content

Home

Jump to bottom
Will Strohl edited this page Aug 14, 2023 · 4 revisions

Upendo DNN Simple Authentication Provider πŸ”’πŸ”‘

This extension helps you to provide a more modern form of authenticating users on your DNN website. Instead of using the archaic username and password method of logging in, it instead relies on the authentication security provided by the email provider of choice by the end end-user.

When they attempt to log in, they'll be sent an email, where they'll need to copy the code in their email, then paste it into the login form. If the code is correct, then they'll be logged in.

In the interest of keeping things tidy, codes are automatically cleared out as they expire, and after 5 subsequent failed attempts, end-users must wait an hour before they can try again.

How do you say "Easy Security" without saying "easy security?" Oh, never mind. 😎

Sponsors == (typeOf superHuman) Awesome;

Yes, it's not real code. It's just supposed to be fun. :P

This solution is created and maintained by Upendo Ventures for the DNN CMS Community. Please consider sponsoring us for this and the many other open-source efforts we do. It's a lot. :)

  • Sponsor Us (we're grateful at any level πŸ™πŸ½)

Documentation

How to Install

This authentication provider installs the same way as any other extension in DNN.

How to Upgrade

This authentication provider upgrades the same way as any other extension in DNN.

Configuration

Once installed, all you need to do is navigate to the website as a superuser.

Next, use the persona bar to find the Security view in the Manage menu.

image

You'll now see the Upendo Simple Auth provider listed as an option for the Default Authentication Provider field.

image

Select the Upendo Simple Auth option, and save your changes.

That's it! The very next page load will have your end users now using this new method of authenticating.

How to Use

End-users will now have a streamlined user experience when logging in. Here's there new workflow:

  1. Visit the site.
  2. Choose to login.
  3. When viewing the form, they enter their username, then click the Send Code link.
  4. An email is generated and sent to the email address for that user account, if it exists.
  5. The end-user copies the code from their email, and pastes it into the login form.
  6. Click to log in.

That's it! They're logged in, as long as the code is accurate.

Locking Out

End-users that try unsuccessfully 3-times in a row will become locked out of the login form for 1-hour.

Unlocking Users

In the future, the plan is to implement a user management view of some kind to help you manage this feature.

In the meantime, you can do either:

  • Tell the end-user to wait until the timeout expires.
  • Find the user record in the Upendo_SimpleAuthVerification table by their username and delete it. Then, clear cache.

Email Tokens

The emails generated have a template that includes tokens.

Like what we're doing? Please sponsor us. Any amount is appreciated! πŸ™πŸ½

This project is owned and maintained by Upendo Ventures, LLC for the benefit of everyone in the DNN CMS Community & Ecosystem.

Clone this wiki locally