Add additional two factor auth options (SMS and TOTP) to Okta provider #52
Conversation
|
I will take a look at this soon, thanks for posting a PR! |
|
Thanks @wolfeidau! |
|
I have had a good look over this PR and it looks great, my concern at the moment is it adds another question which is asked of the user everytime they log in. Given that this is every hour I am trying to figure out how to make this simpler. I have messed around with a few ideas but most of them aren't great. I really need to rewrite the whole flags / config / user input as it is a mess at the moment. I originally considered this a future @wolfeidau problem, sadly that time is now. I would love your thoughts on how we can make this smoother. If we can't come up with a work around I will just merge your PR as it is great work and others have requested it. Cheers |
|
Thanks for taking a look at this @wolfeidau. I totally agree with you, and I also was thinking it would be a pain to get an extra prompt every hour. I think ultimately a rewrite of the flags/config/user input would be the best option, but I know that would require a fair amount of work. The only option I could think of without modifying the flags/config and to avoid the additional prompt would be to assume whatever the first MFA option that is returned is the one that should be used. This definitely falls short especially if there are multiple MFA options enabled and the user doesn't have admin control over the Okta MFA setup. |
|
Does this pull request allow sms auth without using ocata? |
|
@runningman84 - this pull request only adds SMS/TOTP support specifically for Okta. |
|
Good news this is merged just working on some tidy up for 2.0 release 😂 🎉 |
|
@wolfeidau - awesome! thanks! |
This change adds support for additional two factor auth options for Okta: SMS and TOTP (Google Auth). I added the ability for user to select what two factor auth mechanism they want to use if there are multiple options enabled on the account. Looks like this: