[6.6.9] Multifactor authentication problems

[spfma...@e.mail.fr]

Hi,

 

I am trying to setup MFA, with GoogleAuthenticator as a first try.

 

As it seemed to work with default in memory storage, I decided to give a try to CouchDB registration. I chose this one because I plan to setup a high availability service, with two nodes. So I need a very simple and replication-oriented solution.

 

But I have experienced a few problems :

 

1) Even if my CouchDB instance was running and "cas.properties" parameters were correct (credentials, automatic database creation), I could not use any authenticator because all tokens were rejected. After searching in this list, I found a post from 2021 mentioning "_design/CouchDbGoogleAuthenticatorToken" was missing and not created automatically.

 

After adding it manually, is was indeed Ok.

 

So is this bug still unsolved in current versions ? My Java skills are quite outdated and I am not able submit a PR from my own right now.

 

2) Multiple devices registration sounds appealing but I was not able to complete additional devices registration. After entering the account registration code for the new device, I am not asked for a second validation and the login form shows the first device is selected .

I see no way to change it and in the "AccountManagement portal", I can still see only one device.

Is there something wrong or did I miss something ?

 

Regards

 

---

FreeMail powered by mail.fr