Skip to Content
Last modified by Agnease on 2026/05/23 18:56
From version 1.10
edited by Agnease
on 2026/05/22 03:23
Change comment: There is no comment for this version
To version 1.12
edited by Agnease
on 2026/05/22 03:35
Change comment: There is no comment for this version

Summary

Details

Page properties
Content
... ... @@ -17,8 +17,8 @@
17 17   </p>
18 18  
19 19   <p class="hero-support">
20 - This extension protects XWiki accounts with an additional verification step after the standard username and password login.
21 - Users can verify access with an authenticator app code or an email-delivered code, while XWiki keeps its familiar login experience.
20 + This XWiki MFA / 2FA extension adds an additional verification step after the standard username and password login.
21 + Users can verify access with authenticator app codes, email-delivered one-time codes, or a combined setup requiring both methods.
22 22   </p>
23 23  
24 24   <div class="hero-actions">
... ... @@ -84,12 +84,33 @@
84 84   </div>
85 85   <h3>Second login step</h3>
86 86   <p>
87 - After the username and password are verified, users are asked to enter a time-based verification code.
87 + After the username and password are verified, users are asked to enter an additional verification code
88 + before accessing the wiki.
88 88   </p>
89 89   </article>
90 90  
91 91   <article class="product-feature">
92 92   <div class="feature-icon">
94 + <i class="fa fa-mobile" aria-hidden="true"></i>
95 + </div>
96 + <h3>Authenticator app codes</h3>
97 + <p>
98 + Users can verify access with codes generated by authenticator applications, such as mobile TOTP apps.
99 + </p>
100 + </article>
101 +
102 + <article class="product-feature">
103 + <div class="feature-icon">
104 + <i class="fa fa-envelope-o" aria-hidden="true"></i>
105 + </div>
106 + <h3>Email verification codes</h3>
107 + <p>
108 + Users can also receive a verification code by email, useful when an authenticator app is not available.
109 + </p>
110 + </article>
111 +
112 + <article class="product-feature">
113 + <div class="feature-icon">
93 93   <i class="fa fa-qrcode" aria-hidden="true"></i>
94 94   </div>
95 95   <h3>User setup screen</h3>
... ... @@ -100,6 +100,17 @@
100 100  
101 101   <article class="product-feature">
102 102   <div class="feature-icon">
124 + <i class="fa fa-clock-o" aria-hidden="true"></i>
125 + </div>
126 + <h3>Remember trusted clients</h3>
127 + <p>
128 + Trusted browsers can be remembered beyond the current session, reducing repeated MFA prompts while keeping
129 + the second factor active for new or untrusted clients.
130 + </p>
131 + </article>
132 +
133 + <article class="product-feature">
134 + <div class="feature-icon">
103 103   <i class="fa fa-sliders" aria-hidden="true"></i>
104 104   </div>
105 105   <h3>Administration controls</h3>
... ... @@ -153,6 +153,12 @@
153 153   </p>
154 154  
155 155   <p>
188 + It can also support organizations that need MFA as part of their cybersecurity controls, including companies
189 + working toward NIS 2 readiness. NIS 2 focuses on stronger cybersecurity risk management across essential and
190 + important entities in the EU, and MFA is often expected as part of enterprise access protection programs.
191 + </p>
192 +
193 + <p>
156 156   It is also useful when many users access the wiki remotely, when administrator accounts need stronger protection,
157 157   or when the organization wants to reduce the risk of compromised passwords.
158 158   </p>
... ... @@ -172,6 +172,42 @@
172 172   </div>
173 173  </section>
174 174  
213 +<section class="product-section-muted" aria-labelledby="compliance-title">
214 + <div class="container">
215 + <div class="product-layout">
216 + <article class="product-summary-card">
217 + <h2 id="compliance-title">Useful for MFA adoption and NIS 2 readiness</h2>
218 +
219 + <p>
220 + Many organizations now need multi-factor authentication for enterprise software, especially when the
221 + platform contains internal documentation, procedures, operational knowledge or sensitive business data.
222 + </p>
223 +
224 + <p>
225 + For organizations using XWiki as a knowledge platform, having MFA embedded in the standard XWiki login
226 + experience helps close a practical security gap without requiring a full replacement of the authentication flow.
227 + </p>
228 +
229 + <p>
230 + This can be relevant for companies preparing for NIS 2 requirements, where MFA is part of a broader
231 + cybersecurity risk management and access protection strategy.
232 + </p>
233 + </article>
234 +
235 + <aside class="product-info-card" aria-labelledby="mfa-readiness-title">
236 + <h3 id="mfa-readiness-title">Security controls supported</h3>
237 + <ul>
238 + <li>Second-factor verification after password login</li>
239 + <li>Authenticator app or email-based verification codes</li>
240 + <li>Reduced repeated prompts for trusted clients</li>
241 + <li>Administration controls for user-level MFA management</li>
242 + <li>Better protection for administrator and remote-access accounts</li>
243 + </ul>
244 + </aside>
245 + </div>
246 + </div>
247 +</section>
248 +
175 175  #*
176 176  <section aria-labelledby="gallery-title">
177 177   <div class="container">