-
New Feature
-
Resolution: Unresolved
-
Major
-
None
-
4.2.1
The current implementation of tool_mfa is restricted to normal web session logins, it is not hooking into alternative authentication/access methods such as the one used by external systems (mobile app)
Supporting MFA in the login/token.php could be a bit challenging as there are some factors that will require presenting a second page to the user (currently email, totpt and webauthn).
For detailed information about the proposed solution for external services such as the Mobile app see: https://docs.google.com/document/d/1D1ODl_7PcGNQcOmWkHOHBDYKtf5wYq9WxvZ-j64ZYys/edit
Note for integrators:
- The change in lib/classes/session/manager.php is related to
MDL-79712
- blocks
-
MOBILE-4388 Support LMS MFA features
- Open