search

caris-events / tunalog

🐟 Tunalog is a no-installation, easy-to-use blogging system written in Go.
https://tunalog.org
MIT License
353 stars 18 forks source link

Support 2FA #29

Open PichuChen opened 1 week ago

PichuChen commented 1 week ago

作為一個內容管理平台,搞不好會有人開始猜密碼,如果能支援 Google Authenticator 或是 WebAuthn 之類的協定的話就能做到 2FA 了?

YamiOdymel commented 1 week ago

原本有想過,不過目前折衷方案是密碼表單都有流量限制,我記得是每秒兩次

如果真的要實作應該是 TOTP