Unable to get 2FA to work

Fabio_Carvalho_FLRS · May 14, 2024, 8:00am

We are trying to set up 2FA on our app based on the instructions provided here

The plugin/feature was installed from Marketplace

The Users table has the additional columns

When we try to register a user using the register endpoint of the UserService.
We get the following response

the transaction id is not present,
the twoFA_secret and twoFA_qrURL is null.
Only twoFactorAuthentication is set to true

Without these we cant proceed to the next step.

Request

Response

Instead of Registering with 2FA we also tried enabling 2FA for an existing user using the /enable2fa PUT method

In the response we get the totpQR_Path and totpSecretKey and adding the key to the Authenticator works.

There is no transaction id provided here which is as per your documentation. But the user record in the database still has twoFactorAuthentication = False

If we try to login as the user, the response does not have a transaction id that can use to carry out 2fa with the /auth POST endpoint as it requires the transaction id and the authenticator code.

We manually updated twoFactorAuthentication = True and tried to login again, it still does not provide a transaction id.

Could you please let us know what are we doing incorrectly and what changes are needed to make this work on our app?

Thanks
Fabio

Bohdan_Vynarchuk · May 14, 2024, 8:03am

Hi @Fabio_Carvalho_FLRS,

We are currently looking into your issue and will answer as soon as possible.

Regards,
Bohdan

stanislaw.grin · May 15, 2024, 12:04pm

Hello @Fabio_Carvalho_FLRS,

could you please try renaming your columns:
twoFactorAuth → totpAuthEnabled
twoFA_qrURL → totpQR_Path
twoFA_secret → totpSecretKey

And try again after these changes.

Also, do you use the Twilio plugin in your app? Is it working fine for you or do you have the same issue?

Fabio_Carvalho_FLRS · May 16, 2024, 10:38am

Hi Stanislaw,

We changed the columns as you suggested. When calling the register endpoint we get the following error

Request:

Response:

Thanks
Fabio

Inna_Shkolnaya · May 16, 2024, 10:55am

Hello @Fabio_Carvalho_FLRS

I apologize for the inconvenience. An internal ticket for this problem has already been created. We will notify you as soon as the fix is available.

Regards,
Inna

Inna_Shkolnaya · May 16, 2024, 11:51am

The issue has been fixed. You need to uninstall and install 2FA Login service again. Please let me know if the fix helped you.

Regards,
Inna

Fabio_Carvalho_FLRS · May 18, 2024, 4:05am

Thanks guys for your help. We’ve tested the endpoints and are implementing the feature.

Thanks
Fabio