Skip to content

Enforce 2fa with exclusion groups #40830

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Jun 14, 2023
Merged

Enforce 2fa with exclusion groups #40830

merged 5 commits into from
Jun 14, 2023

Conversation

jvillafanez
Copy link
Member

@jvillafanez jvillafanez commented Jun 7, 2023
edited
Loading

Description

Allow the admin to enforce 2fa usage. A 2fa app must be installed and enabled, otherwise this setting will be ignored and all the users will able to login normally.
The admin can also exclude certain groups from the 2fa enforcement. The users belonging to those groups won't have the 2fa enforced, but they can still use 2fa if they want.

Related Issue

https://github.com/owncloud/enterprise/issues/5219

Motivation and Context

How Has This Been Tested?

Manually tested along with the "twofactor_totp" app

Screenshots (if appropriate):

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Database schema changes (next release will require increase of minor version instead of patch)
  • Breaking change (fix or feature that would cause existing functionality to change)
  • Technical debt
  • Tests only (no source changes)

Checklist:

  • Code changes
  • Unit tests added
  • Acceptance tests added
  • Documentation ticket raised:
  • Changelog item, see TEMPLATE

@jvillafanez jvillafanez self-assigned this Jun 7, 2023
@jvillafanez jvillafanez marked this pull request as ready for review June 8, 2023 13:40
@mrow4a mrow4a self-requested a review June 12, 2023 07:56
mrow4a
mrow4a reviewed Jun 12, 2023
View reviewed changes
Copy link
Contributor

@mrow4a mrow4a left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

clarify

phil-davis
phil-davis reviewed Jun 12, 2023
View reviewed changes
@sonarqubecloud
Copy link

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 11 Code Smells

75.0% 75.0% Coverage
0.0% 0.0% Duplication

@owncloud owncloud deleted a comment from update-docs bot Jun 14, 2023
@phil-davis phil-davis merged commit 0c2ac6c into master Jun 14, 2023
@delete-merged-branch delete-merged-branch bot deleted the 2fa_enforcement branch June 14, 2023 05:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@phil-davis phil-davis phil-davis approved these changes

@mrow4a mrow4a mrow4a approved these changes

@DeepDiver1975 DeepDiver1975 Awaiting requested review from DeepDiver1975

Assignees

@jvillafanez jvillafanez

Labels
3 - To Review
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@jvillafanez @phil-davis @mrow4a