[#556] getUserToken Google Authenticator plugin error

system · August 17, 2020, 12:17pm

Migrated from Redmine #556 | Author: Charles McCoy
Status: New | Priority: High, I’m very impatient | Created: 2020-08-17

We have Google Authenticator plugin enabled for our organisation but it seems to have disabled the User token functionality.
When making the getUserToken call i receive the below error :
“You are not allowed to use this application when Google Authenticator Plugin is enabled”
Is there a way of having Google Authenticator enabled and being able to use the Company administration API methods ?

system · August 17, 2020, 12:22pm

Redmine Admin wrote:

hi, unfortunately this API does not support 2FA and access to API is restricted if 2FA used.

system · August 17, 2020, 12:34pm

Charles McCoy wrote:

Thanks for your quick response, are you able to have an admin account that has opted out the 2FA but still have it enabled for the rest of the organisation?
or is it either on or off for every user ?

system · August 17, 2020, 12:37pm

Redmine Admin wrote:

the only way to work with user API now is to disable 2FA for whole system.

We are working on API v.2 which will have 2FA support

system · August 17, 2020, 12:48pm

Charles McCoy wrote:

Ahhh ok, i’ll have to see if our security team are happy to switch off the 2FA.
Do you have any idea when the API V.2 will be ready ?