FAIR

Federated and Independent Repositories

Discover, trust, install: FAIR 1.0 is here

Plugin Banner

AV 2FA

by Avrasys

Version: 1.1.1

Download
Description

AV 2FA adds a crucial layer of security to your WordPress login process. After a user successfully enters their password, this plugin sends a unique, time-sensitive verification code to their registered email address. The user must then enter this code to complete the login, effectively protecting their account even if their password is compromised.

The plugin is designed to be lightweight, easy to use, and seamlessly integrated into the WordPress experience.

Key Features:

  • Email-Based 2FA: Sends a 6-digit verification code to the user’s email.
  • Customizable Code Validity: Admin can set how long the code is valid for (default is 60 seconds).
  • User Exclusion List: Easily bypass 2FA for specific users (e.g., admin or integration accounts) by adding their User ID to an exclusion list.
  • Countdown Timer: The verification screen displays a countdown timer to show the user how much time is left.
  • Secure & Reliable: Uses WordPress’s built-in mailer and secure practices for code generation and verification.

Installing AV 2FA is simple. Follow these steps:

From your WordPress dashboard:

  1. Navigate to Plugins > Add New.
  2. Search for “AV 2FA”.
  3. Click Install Now.
  4. Activate the plugin through the Plugins screen in WordPress.
  5. Navigate to Settings > AV 2FA to configure the options.

Manual installation:

  1. Upload the av-2fa folder to the /wp-content/plugins/ directory.
  2. Activate the plugin through the Plugins screen in WordPress.
  3. Navigate to Settings > AV 2FA to configure the options.
  1. The clean and simple settings page where you can configure the code validity and excluded users.

    The clean and simple settings page where you can configure the code validity and excluded users.

  2. The 2FA verification screen that prompts the user for their code, complete with a countdown timer.

    The 2FA verification screen that prompts the user for their code, complete with a countdown timer.

How do I exclude a user from 2FA?

Navigate to Settings > AV 2FA. In the “Excluded User IDs” box, enter the numeric User ID of the user you wish to exclude. For multiple users, separate their IDs with a comma. You can find a user’s ID by going to the “Users” list and hovering over their “Edit” link; the ID will be visible in the URL in your browser’s status bar.

Can I change how long the code is valid for?

Yes. On the Settings > AV 2FA page, you can set the “Code Validity” in seconds. The default is 60 seconds. We recommend a value between 30 and 120 seconds.

What if emails are not being sent or received?

This plugin uses WordPress’s built-in wp_mail() function. This means it relies on your server’s email configuration or any SMTP plugin you have installed (like WP Mail SMTP). If emails are not arriving, please check your spam folder first, then ensure your WordPress site is configured to send emails correctly.

1.1.1

  • FIX: Added missing nonce check to input calls.

1.1.0

  • FIX: Resolved a critical bug that could lock users out by preventing the 2FA form from displaying.
  • TWEAK: Refactored the entire plugin into a modern, object-oriented structure for better stability and maintenance.
  • TWEAK: Added comprehensive inline and PHPDoc commenting to meet WordPress.org standards.

1.0.0

  • Initial release.
  • Version:Version: 1.1.1
  • Last updated:Last updated: 2 weeks ago
  • Requires:Requires: 5.2
  • Tested:Tested: 6.8.2
Average rating:0 out of 5 stars.
  • Number of ratings: 0 ratings
  • Number of ratings: 0 ratings
  • Number of ratings: 0 ratings
  • Number of ratings: 0 ratings
  • Number of ratings: 0 ratings
Back to top