search

rtCamp / wordpress-skeleton

A base repository structure for rtCamp's WordPress sites, pre-configured to use Github Actions
https://github.com/rtCamp/github-actions-library/
43 stars 18 forks source link

Enhanced User Protection: Implement WordPress VIP 2FA to the Standard WordPress Environment #34

Closed AnuragVasanwala closed 7 months ago

AnuragVasanwala commented 8 months ago

To elevate the security and user experience of our standard WordPress environment, we want to roll out VIP-level 2FA for non-VIP environments. This ensures a consistent and secure login process, mirroring the robust authentication enjoyed by VIP user base.

Under the hood, WordPress VIP uses Two-Factor plugin to provide 2FA. Which is extended to enforce 2FA.

image

Implementation Note

Similar to WordPress VIP 2FA, we will use Two-Factor plugin and we need to enforce 2FA on our standard WordPress environment.

Please refer how WordPress VIP has enforced 2FA and implement similar functionality for standard WordPress environment.

Note: We do not want SMS authentication for now, thus removing any functionality related to SMS authentication is advised.

Original Feature Request: https://github.com/rtCamp/labs/issues/180

justlevine commented 8 months ago

Surfacing this comment about whether this should live in the skeleton or somewhere else, so it doesnt get lost once the PR is dealt with.

AnuragVasanwala commented 7 months ago

Closing this issue as per https://github.com/rtCamp/wordpress-skeleton/pull/35#issuecomment-2026716610.