Extension:EmailAuth
Not to be confused with Extension:Email Authorization.
Category:GPL licensed extensions Release status: stableCategory:Stable extensions |
|
|---|---|
 |
|
| Implementation | User identityCategory:User identity extensions |
| Description | Two-factor authentication via email |
| Author(s) | Tgrtalk |
| Latest version | 0.1.0 |
| Compatibility policy | Snapshots releases along with MediaWiki. Master is not backward compatible.Category:Extensions with release branches compatibility policy |
| MediaWiki | 1.27+Category:Extensions with manual MediaWiki version |
| License | GNU General Public License 2.0 or later |
| Download | Category:Extensions in Wikimedia version control |
| Help | Help:Extension:EmailAuth |
|
|
| Quarterly downloads | 1 (Ranked 61st) |
| Translate the EmailAuth extension if it is available at translatewiki.net | |
| Vagrant role | emailauth |
| Issues | Open tasks · Report a bug |
The EmailAuth extension allows secondary authentication via email. While this is less secure than other two-factor methods such as Extension:OATHAuth, it does not have to be set up by the user, it only requires an email address. This makes it useful for stopping password guessing attacks or securing suspicious logins.
The EmailAuthRequireToken hook is used to decide when the second factor is required. Without adding a handler for that hook e.g. in site configuration, the extension will not do anything.
The verification form shown during login
The verification email
Installation
- Download and move the extracted
EmailAuthfolder to yourextensions/directory.
Developers and code contributors should install the extension from Git instead, using:cd extensions/ git clone https://gerrit.wikimedia.org/r/mediawiki/extensions/EmailAuth
- Add the following code at the bottom of your LocalSettings.php file:
wfLoadExtension( 'EmailAuth' );
- Add a hook handler for the EmailAuthRequireToken hook.
Done – Navigate to Special:Version on your wiki to verify that the extension is successfully installed.
Configuration variables
$wgEmailAuthUnmaskedDomains- Email domains that are not masked during their display in EmailAuth UI components. (All other domains will be replaced with
***.***.) Defaults togmail.com,googlemail.com,hotmail.com,yahoo.com. MW 1.45+
See also
- Help:Extension:EmailAuth
- EmailAuthHooks in WikimediaEvents, for Wikimedia's version of the EmailAuthRequireToken hook.
- wikitech:EmailAuth (Wikimedia operations docs)
- Extension:LoginNotify, an extension that provides a "known device" flag that can be used in the EmailAuthRequireToken hook.
 | This extension is being used on one or more Wikimedia projects. This probably means that the extension is stable and works well enough to be used by such high-traffic websites. Look for this extension's name in Wikimedia's CommonSettings.php and InitialiseSettings.php configuration files to see where it's installed. A full list of the extensions installed on a particular wiki can be seen on the wiki's Special:Version page. |
Category:All extensions
Category:AuthChangeFormFields extensions
Category:Extensions in Wikimedia version control
Category:Extensions used on Wikimedia
Category:Extensions with manual MediaWiki version
Category:Extensions with release branches compatibility policy
Category:GPL licensed extensions
Category:Stable extensions
Category:User identity extensions