Skip to Content
Version 1.11 by Agnease on 2026/05/22 03:28
Hide last authors
Agnease 1.2 1 {{velocity}}
2 #set ($discard = $xwiki.ssx.use('PublicWebSite.WebHome'))
3 #set ($discard = $xwiki.ssx.use('products.WebHome'))
4 {{html clean="false"}}
5
6 <section class="hero hero-centered product-hero" aria-labelledby="product-title">
7 <div class="container hero-inner">
Agnease 1.7 8 <div class="hero-kicker">
Agnease 1.2 9 <i class="fa fa-lock" aria-hidden="true"></i>
10 XWiki security extension
11 </div>
12
13 <h1 id="product-title">XWiki Two-Factor Authentication</h1>
14
15 <p class="lead">
16 Add a second verification step to the standard XWiki login flow.
17 </p>
18
19 <p class="hero-support">
Agnease 1.8 20 This extension protects XWiki accounts with an additional verification step after the standard username and password login.
21 Users can verify access with an authenticator app code or an email-delivered code, while XWiki keeps its familiar login experience.
Agnease 1.2 22 </p>
23
24 <div class="hero-actions">
25 <a class="btn btn-primary" href="$xwiki.getURL('contact.WebHome')">Ask about this extension</a>
26 <a class="btn btn-secondary" href="$xwiki.getURL('products.WebHome')">View all products</a>
27 </div>
28 </div>
29 </section>
30
31 <section aria-labelledby="overview-title">
32 <div class="container">
33 <div class="product-layout">
34 <article class="product-summary-card">
35 <h2 id="overview-title">Stronger login protection for XWiki</h2>
36
37 <p>
38 The XWiki Two-Factor Authentication extension adds an additional verification screen after the standard
Agnease 1.9 39 username and password login. Users confirm their identity with a time-based one-time code generated by an
40 authenticator app, or with a verification code delivered by email.
Agnease 1.2 41 </p>
42
43 <p>
44 The extension is designed for organizations that want to improve account security while keeping authentication
Agnease 1.9 45 close to the standard XWiki login experience. It also supports remembering trusted clients beyond the current
46 session, so users are not forced to enter a second factor again on every login from the same trusted browser.
Agnease 1.2 47 </p>
48
49 <p>
50 It can be useful for internal knowledge bases, intranets, documentation platforms, SOP systems, or other
51 XWiki environments where access to content and administration should be better protected.
52 </p>
53 </article>
54
55 <aside class="product-info-card" aria-labelledby="quick-facts-title">
56 <h3 id="quick-facts-title">Quick facts</h3>
57 <ul>
58 <li>Works with the standard XWiki login flow</li>
Agnease 1.10 59 <li>Supports authenticator app verification codes</li>
60 <li>Supports email-delivered verification codes</li>
61 <li>Can remember trusted clients beyond the current session</li>
Agnease 1.2 62 <li>Configuration available from wiki administration</li>
63 <li>User setup available during login or from the user profile</li>
64 <li>Administrators can enable, disable or reset MFA for users</li>
65 <li>Can be used on the main wiki and subwikis</li>
66 </ul>
67 </aside>
68 </div>
69 </div>
70 </section>
71
72 <section aria-labelledby="features-title">
73 <div class="container">
74 <h2 id="features-title">Main capabilities</h2>
75 <p class="section-intro">
76 The extension focuses on adding a practical second authentication step while keeping the standard XWiki login
77 process and administration experience understandable.
78 </p>
79
80 <div class="product-feature-grid">
81 <article class="product-feature">
82 <div class="feature-icon">
83 <i class="fa fa-key" aria-hidden="true"></i>
84 </div>
85 <h3>Second login step</h3>
86 <p>
Agnease 1.11 87 After the username and password are verified, users are asked to enter an additional verification code
88 before accessing the wiki.
Agnease 1.2 89 </p>
90 </article>
91
92 <article class="product-feature">
93 <div class="feature-icon">
Agnease 1.11 94 <i class="fa fa-mobile" aria-hidden="true"></i>
95 </div>
96 <h3>Authenticator app codes</h3>
97 <p>
98 Users can verify access with codes generated by authenticator applications, such as mobile TOTP apps.
99 </p>
100 </article>
101
102 <article class="product-feature">
103 <div class="feature-icon">
104 <i class="fa fa-envelope-o" aria-hidden="true"></i>
105 </div>
106 <h3>Email verification codes</h3>
107 <p>
108 Users can also receive a verification code by email, useful when an authenticator app is not available.
109 </p>
110 </article>
111
112 <article class="product-feature">
113 <div class="feature-icon">
Agnease 1.2 114 <i class="fa fa-qrcode" aria-hidden="true"></i>
115 </div>
116 <h3>User setup screen</h3>
117 <p>
118 Users can configure their verification code setup during login or from their XWiki profile when needed.
119 </p>
120 </article>
121
122 <article class="product-feature">
123 <div class="feature-icon">
Agnease 1.11 124 <i class="fa fa-clock-o" aria-hidden="true"></i>
125 </div>
126 <h3>Remember trusted clients</h3>
127 <p>
128 Trusted browsers can be remembered beyond the current session, reducing repeated MFA prompts while keeping
129 the second factor active for new or untrusted clients.
130 </p>
131 </article>
132
133 <article class="product-feature">
134 <div class="feature-icon">
Agnease 1.2 135 <i class="fa fa-sliders" aria-hidden="true"></i>
136 </div>
137 <h3>Administration controls</h3>
138 <p>
139 Administrators can enable the feature globally, manage user-level activation, and reset a user setup when required.
140 </p>
141 </article>
142
143 <article class="product-feature">
144 <div class="feature-icon">
145 <i class="fa fa-user" aria-hidden="true"></i>
146 </div>
147 <h3>Profile integration</h3>
148 <p>
149 The extension adds user profile controls so the second-factor setup can be reviewed or reset from XWiki.
150 </p>
151 </article>
152
153 <article class="product-feature">
154 <div class="feature-icon">
155 <i class="fa fa-random" aria-hidden="true"></i>
156 </div>
157 <h3>Fallback behavior</h3>
158 <p>
159 The extension can fall back to standard XWiki authentication when the feature is not enabled or not configured.
160 </p>
161 </article>
162
163 <article class="product-feature">
164 <div class="feature-icon">
165 <i class="fa fa-sitemap" aria-hidden="true"></i>
166 </div>
167 <h3>Main wiki and subwikis</h3>
168 <p>
169 The extension is designed to support XWiki environments using the main wiki and subwikis.
170 </p>
171 </article>
172 </div>
173 </div>
174 </section>
175
176 <section aria-labelledby="use-cases-title">
177 <div class="container">
178 <div class="product-layout">
179 <article class="product-summary-card">
180 <h2 id="use-cases-title">When this extension is useful</h2>
181
182 <p>
183 Two-factor authentication is especially relevant when XWiki contains internal documentation, procedures,
184 customer information, project knowledge, administrative pages, or business-critical content.
185 </p>
186
187 <p>
Agnease 1.11 188 It can also support organizations that need MFA as part of their cybersecurity controls, including companies
189 working toward NIS 2 readiness. NIS 2 focuses on stronger cybersecurity risk management across essential and
190 important entities in the EU, and MFA is often expected as part of enterprise access protection programs.
191 </p>
192
193 <p>
Agnease 1.2 194 It is also useful when many users access the wiki remotely, when administrator accounts need stronger protection,
195 or when the organization wants to reduce the risk of compromised passwords.
196 </p>
197 </article>
198
199 <aside class="product-info-card" aria-labelledby="good-fit-title">
200 <h3 id="good-fit-title">Good fit for</h3>
201 <ul>
202 <li>Private XWiki knowledge bases</li>
203 <li>Company intranets</li>
204 <li>SOP and controlled-document platforms</li>
205 <li>Documentation portals with sensitive content</li>
206 <li>Wikis with several administrators or remote users</li>
207 </ul>
208 </aside>
209 </div>
210 </div>
211 </section>
212
Agnease 1.11 213 <section class="product-section-muted" aria-labelledby="compliance-title">
214 <div class="container">
215 <div class="product-layout">
216 <article class="product-summary-card">
217 <h2 id="compliance-title">Useful for MFA adoption and NIS 2 readiness</h2>
218
219 <p>
220 Many organizations now need multi-factor authentication for enterprise software, especially when the
221 platform contains internal documentation, procedures, operational knowledge or sensitive business data.
222 </p>
223
224 <p>
225 For organizations using XWiki as a knowledge platform, having MFA embedded in the standard XWiki login
226 experience helps close a practical security gap without requiring a full replacement of the authentication flow.
227 </p>
228
229 <p>
230 This can be relevant for companies preparing for NIS 2 requirements, where MFA is part of a broader
231 cybersecurity risk management and access protection strategy.
232 </p>
233 </article>
234
235 <aside class="product-info-card" aria-labelledby="mfa-readiness-title">
236 <h3 id="mfa-readiness-title">Security controls supported</h3>
237 <ul>
238 <li>Second-factor verification after password login</li>
239 <li>Authenticator app or email-based verification codes</li>
240 <li>Reduced repeated prompts for trusted clients</li>
241 <li>Administration controls for user-level MFA management</li>
242 <li>Better protection for administrator and remote-access accounts</li>
243 </ul>
244 </aside>
245 </div>
246 </div>
247 </section>
248
Agnease 1.6 249 #*
Agnease 1.2 250 <section aria-labelledby="gallery-title">
251 <div class="container">
252 <div class="product-gallery-panel">
253 <h2 id="gallery-title">Screenshots</h2>
254 <p class="gallery-note">
255 Use this area to show the login verification screen, first-time setup, user profile controls,
256 and administration configuration.
257 </p>
258
259 <div class="product-gallery-placeholder">
260 Replace this placeholder with the XWiki gallery macro and 3-5 screenshots from the application.
261 </div>
262 </div>
263 </div>
264 </section>
Agnease 1.6 265 *#
Agnease 1.2 266 <section class="cta-section" aria-labelledby="cta-title">
267 <div class="container">
268 <div class="cta-panel">
269 <h2 id="cta-title">Interested in using this extension?</h2>
270 <p>
271 Send a short message with your XWiki version, authentication setup, and whether you use a single wiki
272 or a main wiki with subwikis.
273 </p>
274 <a class="btn btn-primary" href="$xwiki.getURL('contact.WebHome')">Contact Agnease</a>
275 </div>
276 </div>
277 </section>
278
279 {{/html}}
280 {{/velocity}}