Authenticator app option is not working

[JarvisYang123]

We enabled both Email factor and Authenticator app . It can show Email factor properly and the verification codes workflow is working. But it doesn't show QR code to be scanned for the Authenticator app. Here is the setting

When the user login, it only show email factor option.

If you can assist to check what are other settings we need to set up or how to allow authenticator app option working, it will help us a lot. Thank you

Best Regards, Jarvis Yang

[OliverOPI]

The issue that Catalyst should address is changing the text string factor_totp/settings:totplink_help with the default value "If enabled the user will see a 3rd setup option with a direct otpauth:// link".

This text should be changed to "If enabled the user will see a 3rd setup option with a direct otpauth:// link. The QR setup code can be found in the user's Preferences page at /user/preferences.php".

The plugin settings page does not make it clear that the auth app set up lives under Preferences for the user.

[Peterburnett]

Hi folks,

I dont think that wording is quite right. That option controls what options are displayed to a user when setting up TOTP, but a user MUST still visit their preferences page to setup an authenticator app. The link is present in the user's profile page, but there are also configurations inside the gracemode plugin which will enforce factor setup after the duration of the grace period is expired.

I agree there is a documentation gap around where a users MFA controls all live on a per user basis, in their profile menu. A pull request adding this information to the README would be appreciated.