issues
search
netzbegruenung
/
keycloak-mfa-plugins
Keycloak Authentication Provider implementation to get a 2nd-factor authentication with a OTP/code/token send via SMS
Apache License 2.0
42
stars
9
forks
source link
Optimize 2FA enforcement
#56
Closed
melegiul
closed
1 year ago
melegiul
commented
1 year ago
Abort 2FA enforcement code as soon as possible:
Check credentials and if any 2FA method is found then abort
Check auth session for already set required actions
Check user model for required actions We may try to switch the order to optimize further.
Fixes: #55
Abort 2FA enforcement code as soon as possible:
Fixes: #55