-
Improvement
-
Resolution: Fixed
-
Major
-
4.3
-
MOODLE_403_STABLE
-
MOODLE_403_STABLE
-
master_
MDL-78534 -
-
2
-
Team Hedgehog 2023 Sprint 3.1, Team Hedgehog 2023 Sprint 3.2
There is room to improve the current UX and UI of how the second factor is presented to users once they have logged in. Aligning it more with "standard" methods used by other web applications that support MFA/2FA. This issue will implement a first round of improvements to this workflow.
Next step is to have UX review for the new UI screens.
The mock ups:
- MFA_options_auth_code.png
- MFA_options_auth_token.png
- MFA_options_email.png
These mockups show a new UI that is presented to the user after they have logged in (entered username and password etc.)
The "verify another way" section shows other available (configured) MFA methods for that user.
What if I have LOTS of configured factors?
As shown in the Google2.png there can be many configured mfa options for a user, so this needs to be considered. However, the way the existing implementation works (even without these UI changes) is that only ONE input option is shown per factor type. This means if you have 3 authentication apps on your mobile configured in your Moodle user preferences. Only one code input form field will be displayed in the UI. These needs to be verified for webauthn methods, it's expected these operate the same. However IF webauthn creates an option per hardware device, an option would be to show up to 3 optional methods with a link to "show more options", if a user has more than 3 auth methods available. This would then expand the list dynamically and not reload the page. Most users will only have the minimum required by their orgs.
The background of this page, should have the same background image (if set) as the manual authentication page does.
The "buttons" for the other available authentication types should have their text as links to make it more explicit to what they do and to help with accessibility.
Â
- caused a regression
-
MDL-79485 Hard-coded English language strings in MFA verification page
- Closed
- has to be done before
-
MDL-78878 Authentication: MFA - Guide page bugs
- Open
- is blocked by
-
MDL-78509 Add Multi-factor authentication (MFA) plugin
- Closed
- Testing discovered
-
MDL-79344 Tool MFA exception popup when using security key
- Closed
- will help resolve
-
MDL-78511 Authentication: MFA - SMS factor
- Closed