MFA / TFA / 2FA - Login Page Issue

matti
Fri, 03/04/2022 - 04:05
Forums
Support
Hi There This has been brought up previously, but no answers provided. Have implemented ga_Login, etc and have the process of actually setting up the MFA as a user working (provides the QR Code, etc). However when logging back in: - User types in Username and Password (and clicks login) - Screen flashes and just shows blank fields again Its as if something is not allowing the MFA page to come up to allow the user to enter a code. Basically just automatically rejecting the login. I'm not a drupal guru, so can't really provide much more info. Some research might have related it to a redirection on the login screen to the dashboard (and therefore not showing MFA screen). Suggestions? Anyone implemented this successfully? Running 3.0 RC Thanks, Matt
matti
Fri, 03/04/2022 - 05:12

Further to this, the logs…

Further to this, the logs look like the session is being closed before it gets to the TFA part. Then it see it as an anonymous login, which will fail. access denied 03/04/2022 - 15:03 Path: /opigno/web/user/1/security/tfa. Drupal\Core\Http… Anonymous (not verified) access denied 03/04/2022 - 15:03 Path: /opigno/web/user/1/security/tfa. Drupal\Core\Http… Anonymous (not verified) user 03/04/2022 - 15:03 Login attempt failed for xxxxxxxxxx. Anonymous (not verified) access denied 03/04/2022 - 15:02 Path: /opigno/web/user/1/security/tfa. Drupal\Core\Http… Anonymous (not verified) user 03/04/2022 - 15:02 Session closed for xxxxxxxx. xxxxxxxx The actual logging message: Path: /opigno/web/user/1/security/tfa. Drupal\Core\Http\Exception\CacheableAccessDeniedHttpException: User is not logged in. in Drupal\Core\Routing\AccessAwareRouter->checkAccess() (line 117 of /var/www/html/opigno/web/core/lib/Drupal/Core/Routing/AccessAwareRouter.php).