Description
This plugin adds support for WebAuthn into the Two Factor plugin.
Because the U2F API is deprecated and will be removed in February 2022, the plugin enables seamless support for the previously registered U2F security keys so that the users don’t have to re-register their keys and still be able to log in.
Notes:
- please use GitHub issues to report bugs;
- the full source code with all development files is available on GitHub.
Screenshots
FAQ
Be the first to ask.
Reviews
Contributors & Developers
“WebAuthn Provider for Two Factor” is open source software. The following people have contributed to this plugin.
Contributors“WebAuthn Provider for Two Factor” has been translated into 2 locales. Thank you to the translators for their contributions.
Translate “WebAuthn Provider for Two Factor” into your language.
Interested in development?
Browse the code, check out the SVN repository, or subscribe to the development log by RSS.
Changelog
2.5.0
- iCloud support for Firefox (props dd32)
2.4.1
- GH-541: fix issues with YubiKeys (backported a patch by Markus Bauer from https://github.com/madwizard-org/webauthn-server/pull/23)
2.4.0
- GH-830: introduce
webauthn_register_key_use_nicename
filter (props kat3samsin)
2.3.0
- GH-827: Add
webauthn_register_key_suppress_output
filter - GH-826: Add
webauthn_app_id
filter to customize U2F AppID - GH-824: Initialize
wpdb
properties as early as possible - Update
madwizard/webauthn
to 0.10.0
2.2.0
- Do not create user handles if they are not needed
- Add a hook to customize WebAuthN server
- Update dependencies
- Refactor tests
2.1.0
- GH-462: Use correct user ID when editing a user
- GH-456: Set relying party ID to COOKIE_DOMAIN if it is available (props dd32)
- Allow only for network-wide plugin activation (to match Two Factor)
2.0.3
- Update translations (thank you, Copilot)
- Add Ukrainian translation (thank you, Copilot)
2.0.2
- Update madwizard/webauthn to 0.9.0
- Update development dependencies
- Update E2E tests
2.0.1
- GH-295: fix client extensions validation
- Update development dependencies
2.0.0
- Put external dependencies into a unique namespace (GH-36, GH-53, GH-236)
- Update madwizard/webauthn to 0.8.0
- Update development dependencies
1.0.10
- Add zh-tw translations (props Chun-Chih Cheng, Alex Lion)
- GH-215, GH-33: Fix “Unable to save the key to the database” error for long public keys
- Update development dependencies
1.0.9
- Update madwizard/webauthn to 0.8.0
- Update development dependencies
- Add debug mode (activated with
define( 'DEBUG_TFPWA', true );
)
1.0.8
- Security: Update guzzlehttp/guzzle to 7.4.5 (fix CVE-2022-31090 and CVE-2022-31091)
- Do not load the plugin while WordPress is being installed
1.0.7.1
- Fix deployment issue. It’s time to automate the process
1.0.7
- GH-130: fix Network Installation issue
- Update development dependencies
- Add security-related workflows to CI
- Improve tests
1.0.6.1
- Fix deployment issue
1.0.6
- GH-93: remove unnecessary
required
attribute fromwebauthn_key_name
- Security: Update guzzlehttp/guzzle to 7.4.4 (fix CVE-2022-31042 and CVE-2022-31043)
- Update development dependencies
1.0.5
- Synchronize plugin version across all files
1.0.4
- Update translations
- GH-93: add an option to turn off the old U2F provider
- Update dependencies
- Add more E2E tests
1.0.3
- GH-33: increase length of credential_id column to solve issues with Chrome on Mac
- GH-38: fix bugs preventing plugin uninstallation
- Make Settings::offsetGet() compatible with PHP 8.1
1.0.2
- Added E2E tests
- UI fixes
1.0.1
- First public release.