01517: extend $MultiFactorAuthFunction() with a 3rd Parameter or an array of name-value pairs
$MultiFactorAuthFunction() with a 3rd Parameter or an array of name-value pairsDescription:
We had to "beef up" our pmwiki with a Multi Factor Authentication mechanism.
It would be nice, if there was a way to call the $MultiFactorAuthFunction with an array of parameters rather than just userid and password.
I amended the Site/AuthForm with an additional field called "totp" but had to "scrape" it off the $_REQUEST array to access it. I suggest that $MultiFactorAuthFunction is called with an array of whatever AuthForm will submit.
This is a low-priority request. It was easy enough to implement a Time-Based-One-Time-Password (thanks!), but I'd guess the demand for such functionality will increase.
(if you want a working example, contact me offline) tictactux
Indeed you can simply check the $_POST['totp'] value, not sure a third parameter is required if AuthUserId() does not process them directly. I plan to add RFC:6238 compatible TOTP either to the core or as an extension (for the QR code library written by someone else). I have this online on a large website, I have to find the time to port it, and to figure out the most reasonable way to store the shared secrets on disk (currently mine are in an encrypted column of a MySQL database). --Petko