Apps
Knowledge
People
Register
Login



-
- Content .- Fans (10) .- Knowledge Base (1) . 

One Time Password Backend

   2.4.1  

ownCloud Tool

Score 61%
One Time Password Backend
zoom


One Time Password Backend
zoom


One Time Password Backend
zoom


Version Control:  Link
Minimum required   ownCloud 5
Downloads:  2088
Submitted:  Jun 17 2013
Updated:  Apr 30 2014

Description:

This application is distributed WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU AFFERO GENERAL PUBLIC LICENSE for more details.

One Time Password Backend can create TOTP and HOTP and generate QrCode
Based on library multiOTP http://www.multiotp.net/ develop by "SysCo systèmes de communication" (thanks)
test with "Google Authenticator" and "android Token"
Can works with Yubikey see doc here : http://www.sj-vs.net/two-factor-authentication-for-owncloud-using-one-time-passwords-otp-from-yubikey/
Administrator interface to manage users OTP
require Owncloud >= 5

if you want help to make bug fix, enhancement or translation your welcome.
Just fork the github project and submit your pull request
GIT : https://github.com/loki36/user-otp

Version 2.4.1

Installation:
Upload user_otp directory under the 'apps' directory of your ownCloud.
user_otp folder should have read write permission for the web server user (under debian/ubutnu : chown -R www-data:www-data user_otp)
Navigate to the 'Apps' page in Admin.
Click on 'user_otp' in the application list. Then click the 'Enable' button.

Usage:
- Navigate to the 'Admin' page to set the server encryption key;
- Click 'Save';
- Navigate to 'Personal' page to create Your OTP

- keep an admin user working without otp in case of a lost of otp seed
if not you can delete otp user config in the db with the query
"delete from *PREFIX*user_otp where `user` = 'YOURUSERLOGIN'
replace *PREFIX* by owncloud table prefix 'oc_' by default

- Use the navigation entry "OTP users" (on left bar, with admin account)
to manage user's OTP
- if you want to be able to send email to users with OTP config
your server must be correctly configure :
http://doc.owncloud.org/server/6.0/admin_manual/configuration/configuration_mail.html


Todo:
- improve Admin interface to manage otp user information (mass provisionning / ...)
- add user rescue otp code as lost password process




Changelog:

V2.4 2014-04-29: (2.4.1)
bug fix DB:MySQL ERROR: Unable to write the changes in the file #61

V2.4 2014-04-27:
enhancement stop browsers trying to "remember the OTP but only the "real" password #56
enhancement change on admin page HOTP params #41
enhancement it would be nice to be able to set an own "accuracy" #57
update multiOTP class from 4.0.6 to 4.2.4.2 #58
bug fix no OTP field #53
bug fix css #55
bug fix text error "passorwd" #54

V2.3 2014-04-14:
enhancement enter regular password and OTP within same field #44
enhancement admin option for user can't disable otp option (only changed it) #48
bug fix lost password link not working when otp is enable #47
bug fix user (including admin) can't change password with OTP+password required option # 50

V2.2 2014-02-28:
enhancement page liste users with otp for admin #40
enhancement Small changes to make this compatible with Yubikey (HOTP) #33 (thanks to Bas)
bug fix user-otp prevents creation of new ownCloud users #36
bug fix setting up user token seed fails on OC6 with PostgreSQL 9.1 #38 (thanks to rainforest1155)
bug fix two factor auth for user not have a two factor auth #39
bug fix Password-field behaviour for "Two Factor Authendication"is different #6
bug fix Broken path to password.svg - variable owncloud root path #32

V2.1 2014-02-02:
bug fix SQL Error using Postgresql as DB #25
bug fix Password not change! #27
owncloud 6 bug fix #28
remove windows binary from the 3rd party
bug fix personal setting error #29

V2 :
lot of bug fix
update multiOTP lib (4.0.4)
store otp user information in owncloud DB
should work with all user backend!
add two factor authenticator options




LicenseAGPL
Send to a friend
Subscribe
Other  Apps  from loki9236
Report inappropriate content



goto page: prev   1  2  3  4  5  6 

-

 OTP box showing on shared link

 
 by asd102 on: May 14 2014
 
Score 50%

Hi there,

Great app, thank you!

When I share a link that is password protected, the OTP password box appears on the login screen for that person, and the layout does not scale accordingly.

Is it possible to hide this box when there is no need for it?

Thanks
Alex


Reply to this

-
.

 thanks! It works

 
 by copkamp on: May 29 2014
 
Score 50%

This App works also great with the Microsoft Authenticator (also known as Authenticator under Windows Phone).


Reply to this

-

 ERROR: The token has already been used

 
 by annonman on: Jun 1 2014
 
Score 50%

I am running Centos 6, most recent version of Own cloud-owncloud-6.0.3-6.1.noarch

php:5.4

I know youy said the error was fixed, with 4.2.1, but it still errors out.


Reply to this

-

 Re: ERROR: The token has already been used

 
 by loki9236 on: Jun 4 2014
 
Score 50%

no

V2.4 2014-04-29: (2.4.1)
bug fix DB:MySQL ERROR: Unable to write the changes in the file #61

i need more information to solve this error


Reply to this

-

 Re: Re: ERROR: The token has already been used

 
 by nastytoby on: Jun 24 2014
 
Score 50%

I have the same Error and here are the informations you asked the other user before:

----------
// NOTE: It works with Two-Factor Auth but not with only "Standard OR OTP authenfication".
It always says "ERROR: The token has already been used" when I try login. Is it a problem when encryption is activated? Because the password is the encryption password and I could imagine this is the trouble?!
-----------

> OS ?
debian 7.5
> php version ?
PHP 5.4.4-14+deb7u10 (cli) (built: May 30 2014 09:58:21)
Copyright (c) 1997-2012 The PHP Group
Zend Engine v2.4.0, Copyright (c) 1998-2012 Zend Technologies

web server ?
ii apache2 2.2.22-13+deb7u1 amd64 Apache HTTP Server metapackage
ii apache2-mpm-prefork 2.2.22-13+deb7u1 amd64 Apache HTTP Server - traditional non-threaded model
ii apache2-utils 2.2.22-13+deb7u1 amd64 utility programs for webservers
ii apache2.2-bin 2.2.22-13+deb7u1 amd64 Apache HTTP Server common binary files
ii apache2.2-common 2.2.22-13+deb7u1 amd64 Apache HTTP Server common files
ii libapache2-mod-php5 5.4.4-14+deb7u10 amd64 server-side, HTML-embedded scripting language (Apache 2 module)
rc libapache2-mod-php5filter 5.4.4-14+deb7u10 amd64 server-side, HTML-embedded scripting language (apache 2 filter module)

> db ?
ii mysql-common 5.5.37-0+wheezy1

> server log
no entries

> multiotp log

multiotp 4.2.4.2
Your script is running from /var/www/owncloud/apps/user_otp/3rdparty/multiotp/
2014-06-24 14:09:04 debug tobi Authentication Info: User tobi successfully created and saved.

> admin config

- Standard OR OTP authenfication: Checked
- Max try before block: 6
- Algo: TOTP
- Digit number: 6 (Google Auth)
- Token Time: 30
- Token Max Event Window: 100
- Disable OTP with remote: Checked




Reply to this

-

 Re: Re: Re: ERROR: The token has already been used

 
 by loki9236 on: Jun 24 2014
 
Score 50%

Hi,

I think you right and similar issue is open on github
https://github.com/loki36/user-otp/issues/66
i will desable Standard OR OTP authentication (User can use password OR OTP) and
Replace password by OTP (User needs OTP to connect, if user is in the OTP db file
if user encrption is enable


Reply to this

-
.

 can't create OTP for normal user

 
 by MS13 on: Jun 25 2014
 
Score 50%

Good day,

I have a slight problem with the creation of an OPT for a normal user for the admin account everything works fine.

For a normal user, when I navigate to the personal area and select "create OTP" I will get "Error : check apps folder rights"

>> I did double (and triple) check the access rights for the user_otp folder and they are correct.

Also, when I try to provision the OTP for a normal user from the admin account via the navigation entry "OTP users" I get no response at all when I click on "create OTP".

Did you come across a problem like this before?

System:
Raspbian GNU/Linux 7 (wheezy)
Linux version 3.6.11+
ownCloud 6.0.0a (stable)


Cheers,
Mike


Reply to this

-

 Re: can't create OTP for normal user

 
 by loki9236 on: Jun 25 2014
 
Score 63%

which db is used ?
because since otp information are store in the DB error message is not realy good


Reply to this

-

 Re: Re: can't create OTP for normal user

 
 by MS13 on: Jul 4 2014
 
Score 50%

Thanks for taking your time and sorry for my late reply.

Here are the information about the DB:
/var/www/data/owncloud.db: SQLite 3.x database


Reply to this

-

 ownCloud 7 beta

 
 by andrewgrill on: Jun 29 2014
 
Score 50%

Just installed ownCloud 7 beta 1 and I can't get to manage the OTP settings - app is enabled but not all the functionality is there - has testing with OC7 started?


Reply to this

-

 Re: ownCloud 7 beta

 
 by loki9236 on: Jun 30 2014
 
Score 50%

Hi,

not tested on oc7, and due to an overload of work, i will not able to work on it before september


Reply to this

goto page: prev   1  2  3  4  5  6 

Add commentBack




-
 
 Who we are
Contact
Register
Explore
Apps
Knowledge
People
Participate
Add App
Public API
About apps.ownCloud.com
Legal Notice
Report Abuse
 

Copyright 2011-2014 apps.ownCloud.com Team  
All rights reserved. apps.ownCloud.com is not liable for any content or goods on this site.
All contributors are responsible for the lawfulness of their uploads.