| Yubico Forum https://forum.yubico.com/ |
|
| [PROJECT] - Joomla! CMS - Yubikey Authentication Plugin https://forum.yubico.com/viewtopic.php?f=8&t=250 |
Page 3 of 4 |
| Author: | James [ Mon Feb 27, 2012 2:07 am ] |
| Post subject: | Re: Joomla! Yubikey Authentication Plugin |
The plug-in and associated component have been ported to Joomla! 2.5. Here are the change log notes: Joomla! 2.5 Support - Rev 1.0 (26FEB12) * Ported the component and plug-in to Joomla! 2.5. * Added the most current version of the Yubico.php class file to the plug-in * Added the ability to filter users in the Yubikey user listing in the component. * Added the ability to enable/disable the HTTPS and HTTPSVERIFY features of the connection to the Yubico Yubikey authentication server the plug-in uses. |
|
| Author: | corax [ Sun Apr 07, 2013 6:12 am ] |
| Post subject: | Re: [PROJECT] - Joomla! CMS - Yubikey Authentication Plugin |
Dear Colleagues, Need some help... I am using Joomla 2.5. 'Authentication - Joomla' and 'Authentication - Yubikey' are enabled. The user can log in using username and password+Yubikey OTP. But, with the same username and password+ENTER the same user can also pass further on. I would like some users to have to use Yubikey to login (but can't use also user+pass combination) For others, I would like to leave them to use normal user+pass only. Can you tell me is this possible? |
|
| Author: | James [ Sun Apr 07, 2013 5:48 pm ] |
| Post subject: | Re: [PROJECT] - Joomla! CMS - Yubikey Authentication Plugin |
corax wrote: Dear Colleagues, Need some help... I am using Joomla 2.5. 'Authentication - Joomla' and 'Authentication - Yubikey' are enabled. The user can log in using username and password+Yubikey OTP. But, with the same username and password+ENTER the same user can also pass further on. I would like some users to have to use Yubikey to login (but can't use also user+pass combination) For others, I would like to leave them to use normal user+pass only. Can you tell me is this possible? Hi Corax, This authentication behavior can happen if the "Authentication - Joomla" plug-in is not disabled. If both the "Authentication - Joomla" AND "Authentication - Yubikey" plug-ins are left enabled, then either authentication method for users would work - with or without Yubikey in the password. The only authentication plug-in that should be enabled is "Authentication - Yubikey". - James |
|
| Author: | corax [ Mon Apr 08, 2013 9:56 pm ] |
| Post subject: | Re: [PROJECT] - Joomla! CMS - Yubikey Authentication Plugin |
Thanks James, I understand that but... I would like some (not all) users to have to use Yubikey to login (but can't use also user+pass combination) For others, I would like to leave them to use normal user+pass only. Can you tell me is this possible? |
|
| Author: | James [ Tue Apr 09, 2013 12:21 am ] |
| Post subject: | Re: [PROJECT] - Joomla! CMS - Yubikey Authentication Plugin |
corax wrote: Thanks James, I understand that but... I would like some (not all) users to have to use Yubikey to login (but can't use also user+pass combination) For others, I would like to leave them to use normal user+pass only. Can you tell me is this possible? Hi Corax, Yes this is exactly how the YubiKey plugin is designed to work. When you initially enable the "Authentication - Yubikey" plug-in and disable the "Authentication - Joomla" plugin, your Joomla installation will work the same for your users. When they enter their user+pass combination they will be able to login as they have in the past. When you log into the Joomla Administrator page and access the YubiKey Authentication component, you will be able to assign a YubiKey to specific users. Once you do this, the users you assign a YubiKey to will be required to log into Joomla with the username+(password+(YubiKey One Time Password)) password. If these YubiKey users try to log into Joomla with only a user+pass combination it will not work. - James |
|
| Author: | corax [ Tue Apr 09, 2013 2:09 am ] |
| Post subject: | Re: [PROJECT] - Joomla! CMS - Yubikey Authentication Plugin |
That is right. It works just like you described. THANKS! |
|
| Author: | wayne [ Sun Apr 21, 2013 11:00 pm ] |
| Post subject: | Re: [PROJECT] - Joomla! CMS - Yubikey Authentication Plugin |
Hi James -- I have your Joomla plugin/component installed and working. I want to ignore your admonition to retain at least one user who is NOT Yubikey enabled--as a fail safe in case the Yubico server is not reachable. My preferred "fail safe" is to re-enable the Joomla authentication plugin by changing its status directly in the database. I've tested this and it appears to work. Is there anything about your plugin that might preclude my preferred fail safe from working? Are there other reasons this might not be a good idea? Thanks for your comments, -- Wayne |
|
| Author: | jiunnyik [ Wed Feb 19, 2014 1:21 am ] |
| Post subject: | Re: [PROJECT] - Joomla! CMS - Yubikey Authentication Plugin |
Hi, Yubikey is not working with Joomla 2.5.18. Tested fresh installation not working as well. During login session , it is showing wrong username / password. Any clue ? Now I have to downgrade my joomla to 2.5.17. Thanks. |
|
| Author: | Tom [ Wed Feb 19, 2014 1:30 pm ] |
| Post subject: | Re: [PROJECT] - Joomla! CMS - Yubikey Authentication Plugin |
Hello, This plugin should be outdated now as Joomla as native support for the Yubikey. |
|
| Author: | wayne [ Wed Feb 19, 2014 6:06 pm ] |
| Post subject: | Re: [PROJECT] - Joomla! CMS - Yubikey Authentication Plugin |
Tom wrote: This plugin should be outdated now as Joomla as native support for the Yubikey. This is true for the up-to-date 3.x version of Joomla. However the 2.5.x line is still under active development and support and will be through 31 December 2014. AFAIK, the 2.5.x line has no native support for the Yubikey. |
|
| Page 3 of 4 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|