this post was submitted on 17 Dec 2023
45 points (100.0% liked)
Meta
9 readers
1 users here now
Discussion about the aussie.zone instance itself
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
2-factor authentication is no longer enabled as it was before the upgrade. I'm not sure if the 2FA code option on the enabling modal is part of setting up new authentication or for using old auth code and I haven't tested it.
This was deliberate on the part of the devs. Old 2FA enrollment was finicky and error prone, locking many users out. So they've disabled it for everyone, forcing re-enrollment to enable it.
I think you made a guide for enabling this properly but I cannot seem to find it. Would that guide be deprecated now?
You've got a good memory. Yes, the new process is slightly different so the old guide isn't relevant. Also its not as important anyway, enrolling no longer enables 2FA before you have a device capable of generating TOTP codes.
I see. I didn't really understand the complication last time but appreciated the guide. Re-enrolling was a cinch. I best do the bot account. Anything about bot accounts we should know about after this upgrade?
I didn't see anything bot related from my skim of the change notes... should be fine.
Done. I don't know if this counts as an issue but on Chrome after setting up 2FA, logging out and logging in to test if the 2FA prompt came up there was briefly a little red error pop up on the bottom left of the browser that said 'Error: mising_totp_token'. Seems like something that should only come up after submitting a blank value not when the 2FA popup first appears. Probably something for the lemmy devs but sharing with you in case it's config or other. No other issues to report so far. Thanks again.
Noticed the same. Seems to be cosmetic so I'm ignoring it for now 🤷♂️
There is a similar Error message issue for anonymous users (at least on desktop Firefox). The message is 'Error: incorrect_login'. If it happened once per session I wouldn't bring it up but I noticed that it happens for every page visit and sometimes while scrolling through comments, even after it has already popped up on the same page. Dunno if anonymous user traffic/experience warrants any concern though. Cheers.