[
https://issues.apache.org/jira/browse/SYNCOPE-1883?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17952026#comment-17952026
]
ASF subversion and git services commented on SYNCOPE-1883:
----------------------------------------------------------
Commit 70e6206e9de54c7632cad813d07c29b479c1e4e1 in syncope's branch
refs/heads/3_0_X from Francesco Chicchiriccò
[ https://gitbox.apache.org/repos/asf?p=syncope.git;h=70e6206e9d ]
[SYNCOPE-1883] Storing username along with GoogleMfaAuthAccount (#1082)
> Google MFA authentication does not validate scratch codes
> ---------------------------------------------------------
>
> Key: SYNCOPE-1883
> URL: https://issues.apache.org/jira/browse/SYNCOPE-1883
> Project: Syncope
> Issue Type: Bug
> Components: wa
> Affects Versions: 3.0.11, 4.0.0-M1
> Reporter: Matteo Tatoni
> Assignee: Francesco Chicchiriccò
> Priority: Major
> Fix For: 3.0.12, 4.0.0, 4.1.0
>
>
> If an app is configured through WA to be protected with Google MFA, upon
> first login the system prompts to set up a device for {{OTP}} generation and
> generates {{scratch codes}} for the user to use in case the configured device
> is unavailable. To use the {{scratch codes}}, simply enter one that has never
> been used in place of the {{OTP}} during authentication. However, currently,
> the system raises an exception and does not allow authentication using
> {{scratch codes}}.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
