Closed cydrobolt closed 3 years ago
laxathom
commented
10 years ago FAS handles more than one factor auth at this time: Yubikey Although, we do have a Google-Auth auth that we use on a range of services already.
We was planning to move into FAS but by the time we're writing FAS 3.0 we need to re-think our 2x auth. This feature will be part of FAS 3.0 in any ways.
ryanlerch
commented
3 years ago Closing this issue as the FAS project is now archived, not actively developed, and unmaintained.
FAS was replaced in March 2021 by Fedora Accounts (https://accounts.fedoraproject.org).
If this issue is a Feature Request that might be beneficial to Fedora Accounts, please refile it against Noggin
I love FAS, but perhaps we could implement 2step verification to the login. One could disable or enable it. If it is enabled on an account, then a
2stepcodeshould be passed as a parameter to FAS upon authentication, and should be asked from the user if the user is accessing the page through a browser.We could use Google Authenticator (http://stackoverflow.com/questions/8529265/google-authenticator-implementation-in-python, https://code.google.com/p/google-authenticator/)
This is just an idea; if we were to implement it, a lot of work would go into making it work. Ideas appreciated.