|
|
|
@ -19,7 +19,6 @@ Once that's done, run: |
|
|
|
|
|
|
|
|
|
|
|
bundle install |
|
|
|
bundle install |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
### Automatic installation |
|
|
|
### Automatic installation |
|
|
|
|
|
|
|
|
|
|
|
In order to add two factor authorisation to a model, run the command: |
|
|
|
In order to add two factor authorisation to a model, run the command: |
|
|
|
@ -27,7 +26,7 @@ In order to add two factor authorisation to a model, run the command: |
|
|
|
bundle exec rails g two_factor_authentication MODEL |
|
|
|
bundle exec rails g two_factor_authentication MODEL |
|
|
|
|
|
|
|
|
|
|
|
Where MODEL is your model name (e.g. User or Admin). This generator will add `:two_factor_authenticatable` to your model |
|
|
|
Where MODEL is your model name (e.g. User or Admin). This generator will add `:two_factor_authenticatable` to your model |
|
|
|
and create a migration in `db/migrate/`, which will add `::second_factor_pass_code` and `:second_factor_attempts_count` to your table. |
|
|
|
and create a migration in `db/migrate/`, which will add `:otp_secret_key` and `:second_factor_attempts_count` to your table. |
|
|
|
Finally, run the migration with: |
|
|
|
Finally, run the migration with: |
|
|
|
|
|
|
|
|
|
|
|
bundle exec rake db:migrate |
|
|
|
bundle exec rake db:migrate |
|
|
|
@ -38,14 +37,18 @@ Add the following line to your model to fully enable two-factor auth: |
|
|
|
|
|
|
|
|
|
|
|
Set config values if desired for maximum second factor attempts count and allowed time drift for one-time passwords: |
|
|
|
Set config values if desired for maximum second factor attempts count and allowed time drift for one-time passwords: |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
```ruby |
|
|
|
config.max_login_attempts = 3 |
|
|
|
config.max_login_attempts = 3 |
|
|
|
config.allowed_otp_drift_seconds = 30 |
|
|
|
config.allowed_otp_drift_seconds = 30 |
|
|
|
|
|
|
|
``` |
|
|
|
|
|
|
|
|
|
|
|
Override the method to send one-time passwords in your model, this is automatically called when a user logs in: |
|
|
|
Override the method to send one-time passwords in your model, this is automatically called when a user logs in: |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
```ruby |
|
|
|
def send_two_factor_authentication_code |
|
|
|
def send_two_factor_authentication_code |
|
|
|
# use Model#otp_code and send via SMS, etc. |
|
|
|
# use Model#otp_code and send via SMS, etc. |
|
|
|
end |
|
|
|
end |
|
|
|
|
|
|
|
``` |
|
|
|
|
|
|
|
|
|
|
|
### Manual installation |
|
|
|
### Manual installation |
|
|
|
|
|
|
|
|
|
|
|
@ -62,14 +65,18 @@ Add the following line to your model to fully enable two-factor auth: |
|
|
|
|
|
|
|
|
|
|
|
Set config values if desired for maximum second factor attempts count and allowed time drift for one-time passwords: |
|
|
|
Set config values if desired for maximum second factor attempts count and allowed time drift for one-time passwords: |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
```ruby |
|
|
|
config.max_login_attempts = 3 |
|
|
|
config.max_login_attempts = 3 |
|
|
|
config.allowed_otp_drift_seconds = 30 |
|
|
|
config.allowed_otp_drift_seconds = 30 |
|
|
|
|
|
|
|
``` |
|
|
|
|
|
|
|
|
|
|
|
Override the method to send one-time passwords in your model, this is automatically called when a user logs in: |
|
|
|
Override the method to send one-time passwords in your model, this is automatically called when a user logs in: |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
```ruby |
|
|
|
def send_two_factor_authentication_code |
|
|
|
def send_two_factor_authentication_code |
|
|
|
# use Model#otp_code and send via SMS, etc. |
|
|
|
# use Model#otp_code and send via SMS, etc. |
|
|
|
end |
|
|
|
end |
|
|
|
|
|
|
|
``` |
|
|
|
|
|
|
|
|
|
|
|
### Customisation and Usage |
|
|
|
### Customisation and Usage |
|
|
|
|
|
|
|
|
|
|
|
|
Ross Kaffenberger
11 years ago