Open jnweiger opened 5 months ago
select * from oc_twofactor_totp_secrets where user_id = "alice"
shows the tokenocc twofactorauth:disable alice
select * from oc_twofactor_totp_secrets where user_id = "alice"
no longer shows the tokenocc two:dis alice; occ two:en alice
Setup
Twofactor TOTP Test Plan
Run the tests below with freeotp and/or google authenticator. Optionally also some tests with another otp app.
Having the app freeotp (android or ios) scan the QR code provided and set it up.
Login using user1, get a new code in the freeotp app. Introduce it in the login view. Login.
Having the app freeotp (android or ios) scan the QR code provided - enter a random verification code
Having the app freeotp (android or ios) scan the QR code provided and set it up.
Login using user1, get a new code in the freeotp app. Introduce it in the login view. Login. Logout. Login again using same code
Login using user1, get a new code in the freeotp app for user2. Introduce it in the login view. Login.
Login using user1, totp.
Disable TOTP in the personal settings of user1. Login again
Login using user1, totp.
Disable TOTP in the personal settings of user1
Enable it again, set it up scanning the new QR code.
Login using user1, totp.
Disable TOTP in the personal settings of user1
Enable it again, do not scan the new QR code but use a current code from the first setup to verify
Having the app freeotp (android or ios) scan the QR code provided and set it up.
Try to login with user1 using his password. When the totp input appears introduce random numbers, emojis, negative numbers and empty string.
Having the app freeotp (android or ios) scan the QR code provided and set it up.
Login using ldap_user, get a new code in the freeotp app. Introduce it in the login view. Login.
Having the app google authenticator (android or ios) scan the QR code provided and set it up.
Login using user1, get a new code in the google authenticator app. Introduce it in the login view. Login.
Having the app google authenticator (android or ios) set up the account in the app using the TOTP secret key.
Login using user1, get a new code in the google authenticator app. Introduce it in the login view. Login.
Since 0.8.0 and core 10.13.0