Two Factor Authenticator with Azure

This public forum is for user-to-user discussions of PHPMaker. Note that this is not support forum.
Post Reply
Fakiro82
User
Posts: 108

Two Factor Authenticator with Azure

Post by Fakiro82 »

Hi,
is possible to implement two factor auth login with Microsoft Azure (MFA)?
How can I do this?

Thank you,
Andrea.


arbei
User
Posts: 9288

Post by arbei »

Currently, PHPMaker does not have such feature, you can post it to the feature request forum.


kirondedshem
User
Posts: 642

Post by kirondedshem »

Even if its not currenly provided by phpmaker, as long as anything can be done in php, you can also apply it in php maker it just means you have to do the implimentation yourself.

I see they have a n sdk for php, so before you even go to phpmaker, signup if you havent already and then create a basic php application (outside of phpmaker) to impliment the authentication you want, so that you can familiarise yourself with how to use it in php.

After that you can then use one the following approcahes to impliment it into existing login process or even overide the login process entirely:

  1. add required code on login page using available server side and client script events and force it to wait for the extra authentication. eg you can maybe first hide the login button then add an extra button to submit his username and password to an ajax call that then performs extra authentication and when successfull you then allow him to use the login button or something like that, basically like how the captha works during login
  2. you can also redirect users to another custom page after they login normally so you can wait and do extra authentication beofre allowing them to use any other page on the app, for this you can maybe add a session variable to indicate if a user has completed his extra authentication, which if not set he cant do anything else.
  3. You can also maybe use the user loggingin event where you can amybe use curl passing username & password to call a web service and wait for its authentication response before you finally allow a user to loggin.

HINT: You just need to be a little creative with your approach and you can use any other two factor authentication method you want.

So give it a try


Post Reply