Changes for page XWiki Two-Factor Authentication

Last modified by Agnease on 2026/05/23 18:56

Manage
- Copy
Actions
- Export
- Print Preview
Viewers
- Source
- Siblings
- Content
- Comments
- Attachments
- History
- Information
- Likes

From 1.20 to 2.1

From version 1.1

edited by Agnease
on 2026/05/12 19:53

Change comment: There is no comment for this version

To version 1.20

edited by Agnease
on 2026/05/22 05:55

Change comment: There is no comment for this version

Raw
Rendered

Summary

Page properties (2 modified, 0 added, 0 removed)
Objects (0 modified, 1 added, 0 removed)
- Agnease.Code.SEODetailsClass[0]

Details

Page properties

Title

@@ -1,1 +1,1 @@
--xwiki-two-factor-authentication
++XWiki Two-Factor Authentication | 2FA and MFA for XWiki

Content

@@ -1,0 +1,175 @@
++{{velocity}}
++#set ($discard = $xwiki.ssx.use('PublicWebSite.WebHome'))
++#set ($discard = $xwiki.ssx.use('products.WebHome'))
++{{html clean="false"}}
++
++<section class="hero hero-centered product-hero" aria-labelledby="product-title">
++  <div class="container hero-inner">
++    <div class="hero-kicker">
++      <i class="fa fa-lock" aria-hidden="true"></i>
++      XWiki 2FA and MFA
++    </div>
++
++    <h1 id="product-title">XWiki Two-Factor Authentication</h1>
++
++    <p class="lead">
++      Add a second verification step to the standard XWiki login flow.
++    </p>
++
++    <p class="hero-support">
++      Protect XWiki accounts with authenticator app codes, email verification codes,
++      or a combined setup requiring both.
++    </p>
++
++    <div class="hero-actions">
++      <a class="btn btn-primary" href="$xwiki.getURL('contact.WebHome')">Ask about this extension</a>
++      <a class="btn btn-secondary" href="$xwiki.getURL('products.WebHome')">View all products</a>
++    </div>
++  </div>
++</section>
++
++<section aria-labelledby="overview-title">
++  <div class="container">
++    <div class="product-layout">
++      <article class="product-summary-card">
++        <h2 id="overview-title">Two-factor authentication built into XWiki</h2>
++
++        <p>
++          XWiki Two-Factor Authentication adds an additional verification screen after the standard
++          XWiki username and password login. It improves account protection without replacing the
++          familiar XWiki authentication flow.
++        </p>
++
++        <p>
++          Users can verify access with TOTP codes generated by an authenticator app, with one-time
++          codes delivered by email, or with a combined setup requiring both methods.
++        </p>
++
++        <p>
++          Trusted browsers or devices can be remembered for a configured period, reducing repeated
++          verification prompts on known clients while still requiring verification from new or untrusted ones.
++        </p>
++      </article>
++
++      <aside class="product-info-card" aria-labelledby="quick-facts-title">
++        <h3 id="quick-facts-title">Quick facts</h3>
++        <ul>
++          <li>Works with the standard XWiki login flow</li>
++          <li>Supports authenticator app codes using TOTP</li>
++          <li>Supports email-delivered one-time verification codes</li>
++          <li>Can require app code and email code together</li>
++          <li>Can remember trusted browsers or devices</li>
++          <li>Includes administration and user setup controls</li>
++        </ul>
++      </aside>
++    </div>
++  </div>
++</section>
++
++<section aria-labelledby="features-title">
++  <div class="container">
++    <h2 id="features-title">Main capabilities</h2>
++
++    <p class="section-intro">
++      A focused set of MFA/2FA features for organizations that want stronger XWiki account protection
++      without changing the standard login experience.
++    </p>
++
++    <div class="product-feature-grid">
++      <article class="product-feature">
++        <div class="feature-icon">
++          <i class="fa fa-key" aria-hidden="true"></i>
++        </div>
++        <h3>Second login step</h3>
++        <p>
++          After username and password verification, users must complete an additional verification step before accessing XWiki.
++        </p>
++      </article>
++
++      <article class="product-feature">
++        <div class="feature-icon">
++          <i class="fa fa-mobile" aria-hidden="true"></i>
++        </div>
++        <h3>Authenticator app codes</h3>
++        <p>
++          Users can verify access with TOTP codes generated by authenticator applications on mobile or desktop devices.
++        </p>
++      </article>
++
++      <article class="product-feature">
++        <div class="feature-icon">
++          <i class="fa fa-envelope-o" aria-hidden="true"></i>
++        </div>
++        <h3>Email verification codes</h3>
++        <p>
++          Users can receive one-time verification codes by email when an authenticator app is not available or preferred.
++        </p>
++      </article>
++
++      <article class="product-feature">
++        <div class="feature-icon">
++          <i class="fa fa-plus-circle" aria-hidden="true"></i>
++        </div>
++        <h3>Combined verification</h3>
++        <p>
++          The login flow can require both an authenticator app code and an email code when stricter verification is needed.
++        </p>
++      </article>
++    </div>
++  </div>
++</section>
++
++<section class="product-section-muted" aria-labelledby="security-title">
++  <div class="container">
++    <div class="product-layout">
++      <article class="product-summary-card">
++        <h2 id="security-title">Useful for XWiki security and NIS 2 readiness</h2>
++
++        <p>
++          Many organizations need multi-factor authentication for enterprise software, including internal
++          knowledge bases, intranets, documentation platforms and systems containing operational procedures
++          or sensitive business information.
++        </p>
++
++        <p>
++          For organizations using XWiki, adding two-factor authentication directly to the standard login flow
++          can help close a practical access-control gap. It can be useful for administrator accounts, remote users,
++          private knowledge bases and broader security readiness initiatives such as NIS 2 preparation.
++        </p>
++
++        <p>
++          This extension is not a complete compliance solution on its own, but it can provide an important
++          technical control for protecting access to XWiki.
++        </p>
++      </article>
++
++      <aside class="product-info-card" aria-labelledby="security-controls-title">
++        <h3 id="security-controls-title">Useful for</h3>
++        <ul>
++          <li>XWiki 2FA rollout</li>
++          <li>XWiki MFA adoption</li>
++          <li>Administrator account protection</li>
++          <li>Remote user access protection</li>
++          <li>Private knowledge base security</li>
++          <li>NIS 2 readiness initiatives</li>
++        </ul>
++      </aside>
++    </div>
++  </div>
++</section>
++
++<section class="cta-section" aria-labelledby="cta-title">
++  <div class="container">
++    <div class="cta-panel">
++      <h2 id="cta-title">Interested in using this extension?</h2>
++      <p>
++        Send a short message with your XWiki version, authentication setup, and whether you need
++        authenticator app codes, email verification codes, combined verification, or trusted-device remembering.
++      </p>
++      <a class="btn btn-primary" href="$xwiki.getURL('contact.WebHome')">Contact Agnease</a>
++    </div>
++  </div>
++</section>
++
++{{/html}}
++{{/velocity}}

Agnease.Code.SEODetailsClass[0]

metaDescription

...	...	@@ -1,0 +1,1 @@
	1	+Add two-factor authentication to the standard XWiki login flow with authenticator app codes, email verification codes, combined verification, and trusted-device remembering.