search

jsxc / xmpp-cloud-auth

:key: Authentication hub for Nextcloud+JSXC→Prosody, ejabberd, saslauthd, Postfix
https://www.jsxc.org
MIT License
60 stars 18 forks source link

Compatibility with OpenOTP Two Factor Authentication? #55

Open chriscroome opened 6 years ago

chriscroome commented 6 years ago

I'm experimenting with Prosody and after setting everything up it appears to work, I have lines like this in the /var/log/prosody/prosody.log file:

May 31 11:09:40 mod_bosh        info    New BOSH session, assigned it sid 'XXX'

However it appears that I can only login to Nextcloud after disabling the OpenOTP Two Factor Authentication app via occ app:disable twofactor_totp — is JavaScript XMPP Chat incompatible with OpenOTP Two Factor Authentication?

chriscroome commented 6 years ago

I have done some more testing and if OpenOTP Two Factor Authentication is enabled then logging in using the "Login without chat" works as normal.

If you click "Log in" you get the "Loggin in…" text and spinning image but nothing happens.

However if you click in the URL bar in your browser (which displays https://example.org/login) and hit enter then you get a redirect to the TOTP (Authenticator app) form, at https://example.org/login/challenge/totp and then you can enter the code and login.

So the issues appears to be that the redirect from /login to /login/challenge/totp doesn't happen when the ojsxc app is enabled.

MarcelWaldvogel commented 5 years ago

JSXC does indeed intercept the login process, so @sualko would need to look into this.

MarcelWaldvogel commented 4 years ago

Any progress here?