- Compatible XF 2.x versions
- 2.0
- 2.1
- 2.2
- 2.3
- Visible branding
- No
Features
Note: As an experiment to keep the cost of this addon free, there is an affiliate link used if a user wants to buy a YubiKey.
- Option for Days to trust two-step verification. Now you can set it to whatever is appropriate for your site, vs it being hardcoded to 30 days in XenForo.
- Option for Recommended strong two-step options. This allows you to encourage users to have more than one two-step option (backups in case they loose access to the main one they use).
- Users can see/manage the trusted devices for their account (under Account -> Password and security -> Two-step verification).
- Users can see the IP addresses used for their account (under Account -> Password and security).
- Users can see/manage remembered sessions for their account (under Account -> Password and security).
- Admins can see/manage remembered sessions for users (under Sessions tab when editing a user).
- Country-level geo-targeting of IPs for account IPs, sessions and trusted devices is done automatically if the site is using Cloudflare with the the IP Geolocation setting turned on for your zone.
Note: As an experiment to keep the cost of this addon free, there is an affiliate link used if a user wants to buy a YubiKey.
Also would you really want someone to be able to log in without any credentials whatsoever just because they had physical access to a hardware key? Probably not, so then you are back to needing a second-factor auth for the passkey which kind of defeats the purpose of password-less login.