baarkerlounger
/
two_factor_authentication
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

Doc change re otp_secret_key for version 1 to 2 upgrade 

Resource attribute otp_secret_key only needs a value if the user
requires a TOTP value.
master
Edward Simpson 8 years ago
parent
96abae0a30
commit
21236609b2
1 changed files with 3 additions and 2 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 5
      README.md

5
README.md
Unescape View File

@ -175,14 +175,15 @@ To add them, generate a migration such as:
$ rails g migration AddTwoFactorFieldsToUsers direct_otp:string direct_otp_sent_at:datetime totp_timestamp:timestamp
The `otp_secret_key` is not only required for users who use Google Authentictor,
The `otp_secret_key` is only required for users who use TOTP (Google Authenticator) codes,
so unless it has been shared with the user it should be set to `nil`. The
following pseudo-code is an example of how this might be done:
```ruby
User.find_each do |user| do
if !uses_authentictor_app(user)
if !uses_authenticator_app(user)
user.otp_secret_key = nil
user.save!
end
end
```

Write Preview
Loading…
Cancel
Save