Search 1.9 billion lines of Odoo code on GitHub

auth_totp

Author: LasLabs, Odoo Community Association (OCA)
License: LGPL-3
Branch: 10.0
Repository: 001101/server-tools
Dependencies: base, report, and web
Languages: PO File (8839, 87.3%), Python (1091, 10.8%), XML (129, 1.3%), and reStructuredText (65, 0.6%)
Other branches: 9.0
Other repositories: 020cui/server-tools, 0yik/server-tools, 111sree/server-tools, 2FM/server-tools, 50611/server-tools, 5songHb/server-tools, AITIC/server-tools, AMhadhbi/server-tools, AcruxLab/server-tools, Albin-John/server-tools, AlceConsorcio/server-tools, Alex-Woo/server-tools, Alfa-90/server-tools, App247/server-tools, ArkanSystem/server-tools, Artielkami/server-tools, Axon-System/server-tools, BCDR/server-tools, Banetese/server-tools, BradooDev/server-tools, Bubbles-IT/server-tools, Burakebf/server-tools, CB-Gran-Canaria/server-tools, CGenie/server-tools, Callino/server-tools, Cedric-Pigeon/server-tools, Cgruppo/server-tools, ChanFeei/server-tools, Chandresh-SerpentCS/server-tools, Change2improve/server-tools, ChinaShrimp/server-tools, CiaranCheng/server-tools, ClearCorp/oca-server-tools, CodeFishEG/server-tools, Colorlessgold/server-tools, ComitorDevTeam/server-tools, CompassionCH/server-tools, Comunitea/server-tools, ContrerasTorrez/server-tools, CrazyJET/server-tools, CustomOdoo/server-tools, DITIntl/server-tools, Danielzhulin/server-tools, Dgaroc/server-tools, Digital5-Odoo/server-tools, Dike90/server-tools, Dobtor-OCA/server-tools, Domatix/server-tools, DucTruongKomit/server-tools, DulingLai/server-tools, EBII/server-tools, ERPLibre/server-tools, ERPymes/ERPymes, EssentNovaTeam/server-tools, Fenkiou/server-tools, FernandoCarlosGarcia/server-tools, FernandoRomera/server-tools, ForgeFlow/server-tools, GSLabIt/server-tools, Gabinete-Digital/server-tools, Gebesa-Dev/server-tools, GleydsonHudson/server-tools, GlobalManager/server-tools, Glue-Software-Engineering-AG/server-tools, Gofekra/server-tools, GowthamKalyan/server-tools, GreyShim/server-tools, GrupoAlvamex/server-tools, GuSWRolland/server-tools, Guobower/OCA-server-tools, HarshalBhoir/server-tools, Hellyna/server-tools, HomerDeoDatu/server-tools, Hothua/server-tools, Ingeos/server-tools, Intesco2-0/server-tools, IvanShirokikh/server-tools, Jagdish-Panchal/server-tools, JaimeAvellaneda/server-tools, Jarsa-dev/server-tools, Jarsa/server-tools, JayVora-SerpentCS/server-tools, Jeisonpernia/server-tools, JibenCL/server-tools, Johnvonthegreat/server-tools, JuaniFreedoo/server-tools, JuniorKRnd/server-tools, Kayuulab/server-tools, Kiplangatdan/server-tools, Koesj/server-tools, KonaERP/server-tools, Korynkai/server-tools, KottmannM/server-tools, LasLabs/server-tools, LevelPrime/server-tools, LlywelynLi/server-tools, LourenzoH/server-tools, Mahmoud-Alaa-Eldeen/server-tools, Manuel-Dellisse/server-tools, MariajMesa/server-tools, MasterBlaster479/server-tools, MathBenTech/server-tools, MediaJockey/server-tools, Mefistous/server-tools, Melodivo/server-tools, MindAndGo/server-tools, MjAbuz/server-tools, Morgana-Madamal/server-tools, MrFangD/server-tools, NGTS-AUS/server-tools, NL66278/server-tools, NeatNerdPrime/server-tools, Nowheresly/server-tools, Numigi/server-tools, OCA-MUK/server-tools, OCA/OCB, OCA/server-tools, ORETEK/server-tools, OctoComputer/server-tools, Odoo-Italia-Associazione/server-tools, OdooIndonesia/server-tools, OpenPymeMx/server-tools, Othniel1796/server-tools, OutillageStEtienne/server-tools, PCatinean/server-tools, PESOL/server-tools, PieterPaulussen/server-tools, PlanetaTIC/server-tools, Ppamungkas/server-tools, PrenorSistemas/server-tools, QubiQ/server-tools, Rad0van/server-tools, RealSolutionsLux/server-tools, Reinhard-sheng/server-tools, RicRichter/server-tools, SHEFFIELDAFRICA/server-tools, SanteLibre/server-tools, Saran440/Odoo, Sarfarazsajjad/server-tools, ScopeaFrance/server-tools, SequarSrl/server-tools, SeuMarco/server-tools, SilviaLeonSanchez/server-tools, SilvioGregorini/server-tools, SimoRubi/server-tools, SimoneVagile/server-tools, SokreamPhanqrl/server-tools, SportPursuit/server-tools, StefanRijnhart/server-tools, Sunnyshine008/server-tools, Syci-Consulting/server-tools, TDu/server-tools, TRESCLOUD/server-tools, Tecnativa/server-tools, TemosEngenharia/server-tools, Thorncrag/server-tools, TimLai125/server-tools, Tonow-c2c/server-tools, TradePilotLLC/server-tools, UakamiStudio/server-tools, UnknownInfo/server-tools, VanMoof/server-tools, VasiliyKorobatov/server-tools, Vauxoo/server-tools, VisiionSolucionesTecnologicas/server-tools, VitalPet/server-tools, Wadios/server-tools, WiWaG/server-tools, X-ANS/server-tools, Yaman-als/server-tools, YannickB/server-tools, YogeshMahera-SerpentCS/server-tools, a0c/server-tools, aadarsh977/server-tools, aaltinisik/server-tools, abakus-it/server-tools, abdulhalim-cu/server-tools, abdulrhmans/server-tools, acsone/server-tools, acsonefho/server-tools, adekock11/server-tools, adhoc-dev/server-tools, adolfoeliazat/server-tools, adriansteel/server-tools, adrienpeiffer/server-tools, agenterp/server-tools, agknz/server-tools, ahilali/server-tools, ahmed3bdelhady88/server-tools, aitorbouzas/server-tools, ajaychauhan727/server-tools, ajayjaviya/server-tools, ajinvn2019/server-tools, akhdaniel/server-tools, akhilpsivan01/server-tools, akretion/server-tools, alan80080/server-tools, albertvimlet/server-tools, alecvinent/server-tools, alesisjoan/server-tools, alessavindell/server-tools, alexlafalce/server-tools, alfadil/server-tools, alfieqashwa/server-tools, algiopensource/server-tools, alpham/server-tools, altoch/server-tools, amcor/server-tools, amebalibre/server-tools, amendoncabh/server-tools, anasallaham/server-tools, anassahmed/server-tools, andriisem/server-tools, anhvu-sg/server-tools, anodino-dev/server-tools, ansinaesmejor/server-tools, antilhue/server-tools, antonyrajserpentcs/server-tools, apachesep/server-tools, apertoso/server-tools, apetbiz/server-tools, arafatx/server-tools, area-scm/server-tools, aremili/server-tools, aroodooteam/server-tools, artux404/server-tools, ateijelo/server-tools, aurestic/server-tools, avanzosc/server-tools, avoinsystems/server-tools, aymanshow/server-tools, azmeuk/server-tools, azuaby/server-tools, bacgdev/server-tools, bacgroup/server-tools, bala07123/server-tools, bangil0/server-tools, bealdav/server-tools, beenhere4hours/server-tools, bicomm/server-tools, bishalgit/server-tools-1, bjccdsrlcr/server-tools, blooparksystems/server-tools, bmya/server-tools, bodi000/server-tools, boky1993/server-tools, boutitinizar/server-tools, brain-tec/server-tools, brainbeanapps/server-tools, bud-e/server-tools, bvkl/server-tools, camptocamp/server-tools, captivea-dcr/server-tools, cedvict/server-tools, chdjdan/server-tools, cheikhousy/server-tools, chenwfal/server-tools, chianggq/server-tools, claro5/server-tools, codewareuae/server-tools, cogitoweb/server-tools, connect-to-ak/server-tools, coopiteasy/server-tools, corsojulian7/server-tools, cristinamartinrod/server-tools, crnd-inc/server-tools, cuongpk/server-tools, dalal-intellisoft/server-tools, damdam-s/server-tools, damendieta/server-tools, danger89/server-tools, dani-xtendoo/server-tools, danimaribeiro/server-tools, daramousk/server-tools, davidwah/server-tools, ddufresne/server-tools, delgerS/server-tools, dennybiasiolli/server-tools, dev-tanvir/server-tools, dev00007/server-tools, devang-dreambits/server-tools, diagramsoftware/server-tools, diegobgl/server-tools, diggy128/server-tools, dipakthapaofficial/server-tools, diverfr/server-tools, dmp16/server-tools, dmsergio/server-tools, dndoanh/server-tools, dong-z/server-tools, dperaltab/server-tools, druidoo-dev/server-tools, dsasoftware/server-tools, dsonnet/server-tools, duyhnguyen/server-tools, dynamicats/server-tools, eLBati/server-tools, ebirbe/server-tools, ecosoft-odoo/server-tools, edsersolis/server-tools, elicoidal/server-tools, elperrofarelo/server-tools, emagdalenaC2i/server-tools, enocare/server-tools, erfanjahanshahlo/server-tools, ermannognan/server-tools, esantos-octagono/server-tools, etobella/server-tools, eversatis/server-tools, ewac-nl/server-tools, exosoftware/oca-server-tools, ezdoo/server-tools, fanha99/server-tools, fashkl/server-tools, felixvillafranca/server-tools, ferdiansahgg/server-tools, findsomeoneyys/server-tools, flectra-hq/flectra, flosslab/server-tools, fmdl/server-tools, focusate/oca-server-tools, forkme7/server-tools, foutoucour/server-tools, fslibre/server-tools, gab-net/server-tools, gabrielo77/server-tools, gastonfeng/server-tools, gavindav/server-tools, gdgellatly/server-tools, gitguohao/server-tools, goanzaloo/server-tools, gordan-cuic/server-tools, grant-thornton/server-tools, grap/server-tools, grindtildeath/server-tools, groventure/server-tools, guandalf/server-tools, guewen/server-tools, gurneyalex/server-tools, gustavovalverde/server-tools, gxbsst/server-tools, gzanelli/server-tools, habbaba/server-tools, haidd/server-tools, haublang/server-tools, hbrunn/server-tools, hdb1234/server-tools, henrryyanez/server-tools, hhgabelgaard/server-tools, hibou-io/oca-server-tools, hieulucky111/server-tools, hiisoc/server-tools, hinfo506/server-tools, hippe-67/server-tools, hokhyk/server-tools, hq8399/server-tools, huntergps/server-tools, hvcabaim/server-tools, i-vyshnevska/server-tools, iRichGit/server-tools, ibanh/server-tools, ideaspositivas-group/server-tools, igallart/server-tools, igor-mitin/server-tools, ilmir-k/server-tools, initOS/server-tools, insscn/server-tools, intero-chz/server-tools, invitu/server-tools, ip-candres/server-tools, itblabla/server-tools, ixor3/server-tools, izzihector/server-tools, j-zaballa/server-tools, jaballate/server-tools, jackxusho/server-tools, jacky82669513/server-tools, janverb/server-tools, jaosss/server-tools, jcarlosmontoya/server-tools, jeanpaul-mupagasi/server-tools, jeroen7s/server-tools, jesmar81/server-tools, jimmyec/server-tools, jmorgannz/server-tools, jnegrete/server-tools, jonathanjbbr/server-tools, joserprieto/server-tools, joshuajan/server-tools, josueBulle/server-tools, josuf567/server-tools, jphatig/server-tools, jriveros/server-tools, julenalgios/server-tools, julianram/server-tools, kait-avalah/server-tools, kamilmuhammed/server-tools, kamsir/server-tools, kararaMohamed/server-tools, katyukha/server-tools, kelldave/server-tools, kevin070982/server-tools, kevinpthorne/flectra, kikopeiro/server-tools, kmee/server-tools, kos94ok-3D/server-tools, lasley/server-tools, leemannd/server-tools, legalsylvain/server-tools, lembregtse/server-tools, leonidasthe300/server-tools, lfreeke/server-tools, libregob/server-tools, lideritjnma/server-tools, liehu1/server-tools, lilotter45/server-tools, lincersolucoes/oca-server-tools, liweijie0812/server-tools, loftwah/server-tools, lonelyleaves/server-tools, luistorresm/server-tools, lukebranch/server-tools, magedmnb/server-tools, magnuscolors/server-tools, maherjaballi/server-tools, mamcode/server-tools, marcelomora/server-tools, mart-e/server-tools, mausvt/flectra, mehdi-ghezal/server-tools, michotm/server-tools, mikevhe18/server-tools, mikolodz/server-tools, minhyk/server-tools, minorisa/server-tools, mivilsoft/server-tools, mjadily/server-tools, modoolar/server-tools, mohamedhagag/server-tools, monksoftware/server-tools, mozaik-association/server-tools, msdeek/server-tools, mulaudzicalvin/server-tools, mvaled/server-tools, myonnet/oca-server-tools, mysticalis/server-tools, nabiforks/server-tools, nabima/server-tools, nadiaafa/server-tools, nebras-solutions/server-tools, necrodevz/server-tools, nehaksolves/server-tools, netoodoo/server-tools, newtratip/server-tools, nguyenductamlhp/server-tools, nicolasjelincic/server-tools, nilshamerlinck/server-tools, niulinlnc/server-tools, nodoo/server-tools, novacode-nl/server-tools, novawish/server-tools, ntsirintanis/server-tools, nuobit/server-tools, odof/server-tools, odoo-brazil/server-tools, odoo/odoo, odoo247/server-tools, odooerpdevelopers/server-tools, odoogap/server-tools, odoosoft/server-tools, odoospace/server-tools, omalbastin/server-tools, onaconsulting/server-tools, one2pret/server-tools, onesteinbv/server-tools, onmywaytoheaven/odoo, ontruck/server-tools, onurugur/server-tools, open-net-sarl/server-tools, open-synergy/server-tools, open2bizz/server-tools, osiell/server-tools, osipaas/server-tools, ovnicraft/server-tools, p-tombez/server-tools, percypalomino/server-tools, phillipstack/server-tools, phucngta/server-tools, piensom/server-tools, popcomputadores-desenv/server-tools, praxigento/oca-server-tools, presenceverte/server-tools, programadorzurita/server-tools, pscloud/server-tools, pythoner-3k/server-tools, qtheuret/server-tools, quentinDupont/server-tools, raizs/server-tools, ravibhattarai/server-tools, ravishekharco/server-tools, raycollazo/server-tools, rdeheele/server-tools, realestdon/odoo, redcor/server-tools, revstech/server-tools, rezaakba123/server-tools, richar-osse/server-tools, rifki/server-tools, rm-jamotion/server-tools, robertsvx27/server-tools, romendil/server-tools, ronozoro/server-tools, royalline1/server-tools, rrcfesc/server-tools, rrgaona/server-tools, rsmolyazhenko/server-tools, rsullivan2704/server-tools, rudisulistyo/server-tools, ruifranco/server-tools, rven/server-tools, rwfnf/server-tools, rwsdigital/odoo-server-tools, sadeqamin/server-tools, sailguest/server-tools, saltonmassally/server-tools, sanube/server-tools, savoirfairelinux/server-tools, schout-it/server-tools, sebalix/server-tools, selim-b/server-tools, serpentcs-dev1/server-tools, sewisoft/server-tools, shepilov-vladislav/server-tools, simahawk/server-tools, simone/server-tools, skmezanul/server-tools, skukered/server-tools, skyoj/server-tools, smile-888/server-tools, smurf-U/server-tools, soeethiha/server-tools, solvosci/server-tools, spacemonkeythe/server-tools, ssaid/server-tools, steingabelgaard/server-tools, striqo/server-tools, subteno-it/server-tools, sunflowerit/server-tools, sunshineLhj/server-tools, superjiel/server-tools, suprielfath/server-tools, swbs-co/server-tools, sylvainvh/server-tools, sysprocesarcastro/server-tools, t-np/server-tools, tafaRU/server-tools, takinobori/oca-server-tools, tansadio/server-tools, tarteo/server-tools, tegin/server-tools, thinkopensolutions/oca-server-tools, tirma-sa/server-tools, tmasson/server-tools, tongjiou/server-tools, tqngoc/server-tools, traviswaelbro/server-tools, trevi-software/server-tools, tschanzt/server-tools, tsengeagle/server-tools, tuanna7593/server-tools, tusharkwagh99/server-tools, umingpeng/odoo, unitek-solusi/OCA-server-tools, ursais/server-tools, valenciaricardos/server-tools, valentinthirion/server-tools, valmarnet/server-tools, vcloud9ray/server-tools, vdedyukhin/server-tools, ventor-tech/server-tools, versada/server-tools, victoralmau/server-tools, vinaybhawsar/server-tools, vmelnych/server-tools, westlyou/server-tools, wilcobergacker/server-tools, willmakenoise/server-tools, wowerliu/server-tools, wuhuizhong/server-tools, www3838438/server-tools, xAlphaOmega/server-tools, xcgd/server-tools, xhair/server-tools, xichun/server-tools, xtjie/server-tools, xuanmu/server-tools, xwh123807/server-tools, xwh1238070/server-tools, yalabsio/server-tools, ycp1015/server-tools, yelizariev/server-tools, ygdmxy/server-tools, yogesh-serpentcs/server-tools, ypapouin/server-tools, yusniermatos/server-tools, yuzhengxing/server-tools, yvaucher/server-env, zambee/server-tools, zamberjo/server-tools, zarumaru/server-tools, zeroincombenze/server-tools, zhaohengzeng/server-tools, zhaohuaw/server-tools, zhujin001032/server-tools, and zmakan-p/server-tools
<a class="reference external image-reference" href="http://www.gnu.org/licenses/lgpl.html"><img alt="License: LGPL-3" src="https://img.shields.io/badge/license-LGPL--3-blue.svg"> </a> <a name="mfa-support-via-totp"></a> <h2>MFA Support via TOTP</h2> <p>This module adds support for MFA using TOTP (time-based, one-time passwords). It allows users to enable/disable MFA and manage authentication apps/devices via the &quot;Change My Preferences&quot; view and an associated wizard.</p> <p>After logging in normally, users with MFA enabled are taken to a second screen where they have to enter a password generated by one of their authentication apps and are presented with the option to remember the current device. This creates a secure, HTTP-only cookie that allows subsequent logins to bypass the MFA step.</p> <a name="installation"></a> <h3>Installation</h3> <ol class="arabic simple"> <li>Install the PyOTP library using pip: <code>pip install pyotp</code></li> <li>Follow the standard module install process</li> </ol> <a name="configuration"></a> <h3>Configuration</h3> <p>By default, the trusted device cookies introduced by this module have a <code>Secure</code> flag. This decreases the likelihood of cookie theft via eavesdropping but may result in cookies not being set by certain browsers unless your Odoo instance uses HTTPS. If necessary, you can disable this flag by going to <code>Settings &gt; Parameters &gt; System Parameters</code> and changing the <code>auth_totp.secure_cookie</code> key to <code>0</code>.</p> <a name="usage"></a> <h3>Usage</h3> <p>If necessary, a user's trusted devices can be revoked by disabling and re-enabling MFA for that user.</p> <a class="reference external image-reference" href="https://runbot.odoo-community.org/runbot/149/10.0"><img alt="Try me on Runbot" src="https://odoo-community.org/website/image/ir.attachment/5784_f2813bd/datas" /></a> <a name="known-issues-roadmap"></a> <h3>Known Issues / Roadmap</h3> <a name="known-issues"></a> <h4>Known Issues</h4> <ul class="simple"> <li>External calls to the Odoo XML-RPC API are blocked for users who enable MFA since there is currently no way to perform MFA authentication as part of this process. However, due to the way that Odoo handles authentication caching, multi-threaded or multi-process servers will need to be restarted before the block can take effect for users who have just enabled MFA.</li> </ul> <a name="roadmap"></a> <h4>Roadmap</h4> <ul class="simple"> <li>Make the lifetime of the trusted device cookie configurable rather than fixed at 30 days</li> <li>Add device fingerprinting to the trusted device cookie</li> <li>Add company-level settings for forcing all users to enable MFA and disabling the trusted device option</li> </ul> <a name="bug-tracker"></a> <h3>Bug Tracker</h3> <p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/server-tools/issues">GitHub Issues</a>. In case of trouble, please check there if your issue has already been reported. If you spotted it first, help us smash it by providing detailed and welcomed feedback.</p> <a name="credits"></a> <h3>Credits</h3> <a name="images"></a> <h4>Images</h4> <ul class="simple"> <li>Odoo Community Association: <a class="reference external" href="https://github.com/OCA/maintainer-tools/blob/master/template/module/static/description/icon.svg">Icon</a>.</li> </ul> <a name="contributors"></a> <h4>Contributors</h4> <ul class="simple"> <li>Oleg Bulkin &lt;<a class="reference external" href="mailto:obulkin&#64;laslabs.com">obulkin&#64;laslabs.com</a>&gt;</li> </ul> <a name="maintainer"></a> <h4>Maintainer</h4> <a class="reference external image-reference" href="https://odoo-community.org"><img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" /></a> <p>This module is maintained by the OCA.</p> <p>OCA, or the Odoo Community Association, is a nonprofit organization whose mission is to support the collaborative development of Odoo features and promote its widespread use.</p> <p>To contribute to this module, please visit <a class="reference external" href="https://odoo-community.org">https://odoo-community.org</a>.</p>