In the web interface there is a setting for 2FA but I couldn’t get it to work. For some reason there is no QR code to scan but a link of some kind that does nothing.
It’s a otpauth:// protocol handler link, which should load fine on mobile if you have an app that supports it.
I do agree that displaying a QR code while on desktop would be more practical. As a workaround, you could use this addon on Firefox to display the otpauth:// link in a QR code format and scan that.
⚠ Be careful about not showing this code to anyone else, it contains the secret to the 2FA.
Have you tried this ? I am scared I will lock myself out of my account. Also after getting the link, do I just add it to an authenticator app like Aegis and call it a day.
I got it to work with 1Password, but it seems unfinished and very risky.
To get it to work, I copied the link that the “2FA installation link” button points at, and pasted that into a new 2-factor field in 1password. It presumably was able to extract the secret and start generating the codes. I’ve tested it and it works.
However, it’s risky because Lemmy doesn’t verify you have the correct codes before enabling 2FA. It just assumes you’ll be able to use the cryptic link for something. So if you log out before you’ve set it up, and you mess up the set up, you might not be able to get back in. There are no backup codes as far as I can tell.
So if you do attempt it, I would recommend keeping a device logged in so you can disable it if it goes wrong.
In the web interface there is a setting for 2FA but I couldn’t get it to work. For some reason there is no QR code to scan but a link of some kind that does nothing.
Thanks, I will take a look.
It’s a
otpauth://
protocol handler link, which should load fine on mobile if you have an app that supports it.I do agree that displaying a QR code while on desktop would be more practical. As a workaround, you could use this addon on Firefox to display the
otpauth://
link in a QR code format and scan that.Wow, thank you so much! With this extension I got it done via the QR code the extension created. :)
Glad I could be of service :)
Have you tried this ? I am scared I will lock myself out of my account. Also after getting the link, do I just add it to an authenticator app like Aegis and call it a day.
I’m currently using it :)
I stored it both in Aegis, in my Bitwarden vault and my KeePass backup vault and they all generate the same code.
Cool Bro, thanks for helping. I will set it up now.
I got it to work with 1Password, but it seems unfinished and very risky.
To get it to work, I copied the link that the “2FA installation link” button points at, and pasted that into a new 2-factor field in 1password. It presumably was able to extract the secret and start generating the codes. I’ve tested it and it works.
However, it’s risky because Lemmy doesn’t verify you have the correct codes before enabling 2FA. It just assumes you’ll be able to use the cryptic link for something. So if you log out before you’ve set it up, and you mess up the set up, you might not be able to get back in. There are no backup codes as far as I can tell.
So if you do attempt it, I would recommend keeping a device logged in so you can disable it if it goes wrong.
For me on iOS it asked me to associate with my iPhone keychain or 1Password. Works great. Dunno what that does elsewhere.