2FA Solutions in an OpenOlat environment

13 views
Skip to first unread message

Laura Nikolay

unread,
Dec 22, 2024, 6:49:21 AM12/22/24
to OpenOlat
  1. Hello Community, for my bachelor thesis, I need to test various 2FA solutions in an OpenOlat environment. I have already tested the passkey features, as well as a connection to OpenLDAP. I would like to test additional methods with OpenOlat, such as TOTP/HOTP. Do you have any tips on how I can implement and test further 2FA methods, and what I would need for that? I would greatly appreciate any assistance. Thank you very much. Laura

Florian Gnägi

unread,
Dec 23, 2024, 4:01:19 AM12/23/24
to open...@googlegroups.com
Hi Laura

Currently we do not support TOTP/HOTP. We have passkey as a single secure login where the multi-factor element is provided by the device that you use to store the passkey and if you really want to combine passkey together with a local password to have MFA. 

In OpenOlat 20 we use TOP via email for email address validation, but no TOTP/HOTP.

If you want to implement TOTP/HOTP it is best to configure OpenOlat with a local password an passkey as 2FA and then see how the user flow goes and use the debugger to learn about the flow in the code. Then you could implement the TOTP/HOTP and embed the same way as the passkey is called in that flow.

Cheers
Florian

On 22 Dec 2024, at 12:49, 'Laura Nikolay' via OpenOlat <open...@googlegroups.com> wrote:

  1. Hello Community, for my bachelor thesis, I need to test various 2FA solutions in an OpenOlat environment. I have already tested the passkey features, as well as a connection to OpenLDAP. I would like to test additional methods with OpenOlat, such as TOTP/HOTP. Do you have any tips on how I can implement and test further 2FA methods, and what I would need for that? I would greatly appreciate any assistance. Thank you very much. Laura

--
--
Sie erhalten diese Nachricht, weil Sie Mitglied sind von Google
Groups-Gruppe "OpenOlat".
Für das Erstellen von Beiträgen in dieser Gruppe senden Sie eine E-Mail
an open...@googlegroups.com
Um sich von dieser Gruppe abzumelden, senden Sie eine E-Mail an
openolat+u...@googlegroups.com
Weitere Optionen finden Sie in dieser Gruppe unter
http://groups.google.com/group/openolat?hl=de
-------------------------------------------------------------------------------------------------------------------
OpenOlat - infinite learning - http://www.openolat.org
---
You received this message because you are subscribed to the Google Groups "OpenOlat" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openolat+u...@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/openolat/3f40f858-9a47-4e37-8286-a1246163a45dn%40googlegroups.com.

--------------------------------------------------------------------
professional services for the e-learning system OpenOlat
hosting - operating - support - development - mobile - consulting
--------------------------------------------------------------------
frentix  GmbH
Florian Gnägi, Geschäftsführer
Okenstrasse 6
CH-8037 Zürich, Switzerland


Find me on mastodon linkedin 
--------------------------------------------------------------------



Reply all
Reply to author
Forward
0 new messages