Configure 2FA For MediaWiki: Difference between revisions

From BeeWiki
← Older editNewer edit →
VisualWikitext
No edit summary
No edit summary
Line 4: Line 4:


To configure your Mediawiki instance to allow users to enable two-factor authentication simple add
To configure your Mediawiki instance to allow users to enable two-factor authentication simple add
<pre>wfLoadExtension( 'OATHAuth' );</pre> to the end of the ''LocalSettings.php'' file located in the root of the MediwWiki directory.
<pre>wfLoadExtension( 'OATHAuth' );</pre> to the end of the ''LocalSettings.php'' file located in the root of the MediwWiki directory. Restart your HTTP server.  In my case I simply run
<pre>sudo systemctl restart httpd</pre>
 
==Install oathtool==
 
There are a number of OATH clients on the market, but I decided to just install the ''oathtool'' command line tool on my Fedora based laptop, by running
 
<pre>sudo dnf install oathtool.x86_64</pre>
 
Apple has the same functionality built into the ''Passwords'' app, but as I only login from my Fedora based laptop, it's easier to run a command and copy the output to my clipboard.
 


I added the ''OATHAuth'' extension to this Mediawiki instance.  This means that you can enable two-factor authentication to your profile to further secure your login procedure.  There are a number of OATH clients on the market, but I decided to just install the ''oathtool'' command line tool on my Fedora based laptop, by running


<pre>
sudo dnf install oathtool.x86_64
</pre>




Revision as of 15:45, 5 December 2024

How to use OATHAuth in Mediawiki

Configure OATHAuth

To configure your Mediawiki instance to allow users to enable two-factor authentication simple add 

wfLoadExtension( 'OATHAuth' );

to the end of the LocalSettings.php file located in the root of the MediwWiki directory. Restart your HTTP server. In my case I simply run 

sudo systemctl restart httpd

Install oathtool

There are a number of OATH clients on the market, but I decided to just install the oathtool command line tool on my Fedora based laptop, by running 

sudo dnf install oathtool.x86_64

Apple has the same functionality built into the Passwords app, but as I only login from my Fedora based laptop, it's easier to run a command and copy the output to my clipboard.



I'll document how to register for 2FA here tomorrow. It's too late tonight.


I then run 

oathtool --base32 --totp "REGISTERED KEY GOES HERE"

Which generates a 6 digit code to give to mediawiki when prompted.

Retrieved from "https://wiki.burdicks.net/index.php?title=Configure_2FA_For_MediaWiki&oldid=13"