Moodle's now built in MFA buggy?

Moodle's now built in MFA buggy?

Alberto Matus -
回帖数:1
Hi,

So I have been using the MFA feature for over a year, and it's been quite good. In this latest release of Moodle, well now it is a core part of the LMS. As an admin for the LMS, I have been having to reset many users' MFA so that they can set it up over. I've often taught well "end user" problems since I have it at a maximum of ten tries before it's locked out. However, some users have claimed that they had only failed to enter the codes once or twice. To my disbelief, this happened to one of my accounts the other day. After three failed attempts I got locked out. You can see the screenshot below. So, do we have a buggy MFA in Moodle? Any insights would be appreciated.

asdf

平均分: -
回复Alberto Matus

Re: Moodle's now built in MFA buggy?

Marcus Green -
Core developers的头像 Particularly helpful Moodlers的头像 Plugin developers的头像 Testers的头像
"So, do we have a buggy MFA in Moodle? "
TL/DR: Probably not

I know little about the core or plugin MFA though I know the people behind it are very experienced. However...All non trivial software has bugs and software can have bugs that millions of people never notice but can be a show stopper for other people. Prior to becoming part of core the plugin version of MFA appears to be installed in around at least 1,200 sites over four years.

https://moodle.org/plugins/tool_mfa/stats

And I know some of those sites will have very, very large numbers of users.

During that period people will have reported "issues", which may vary from a perceived bugs, real bugs and feature request, see here
https://github.com/catalyst/moodle-tool_mfa/issues

There are multiple things that can impact anything to do with authentication so reproducing an issue can be difficult. If you can reproduce something that looks like a bug then it is possible to create a ticket here
https://tracker.moodle.org/
平均分: -