bapril
commented
6 years ago Add column to tg member list if user is tg_admin, that includes 2FA status.
2FA status would be true if the count of active 2FA tokens for that user was greater than 0.
Open stewrg opened 7 years ago
bapril
commented
6 years ago Add column to tg member list if user is tg_admin, that includes 2FA status.
2FA status would be true if the count of active 2FA tokens for that user was greater than 0.
stewrg
commented
6 years ago Maybe this should be a new issue?: In addition - It would be useful to be able to generate a list of all users on the system via the CLI that shows all accounts, their email address and phone number, whether PGP has been uploaded and whether 2FA enabled or not and their last Login date... perhaps with switch to be able to restrict the list to those who have NOT entered PGP and/or 2FA. This should be . restricted to Platform Admins and above to generate... but would help with security auditing members.
bapril
commented
6 years ago Query to generate list of non-2FA users. (for System->Report)
select ident from member where ident not in (select distinct member from second_factors where active = 't');
When managing a group as a Group Administrator or Platform Administrator it would be good to be able to see at a glance who has enabled 2FA and uploaded their PGP key. the Trident symbol show the latter - but can 2FA be highlighted in the same or similar way? Given that this is a base security indicator - perhaps this could be restricted so that only Group Admins and above can see who has 2FA?