this post was submitted on 03 Jul 2023
18 points (100.0% liked)

Asklemmy

43948 readers
755 users here now

A loosely moderated place to ask open-ended questions

Search asklemmy ๐Ÿ”

If your post meets the following criteria, it's welcome here!

  1. Open-ended question
  2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
  3. Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
  4. Not ad nauseam inducing: please make sure it is a question that would be new to most members
  5. An actual topic of discussion

Looking for support?

Looking for a community?

~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~

founded 5 years ago
MODERATORS
 

Can't seem to find the setting in the Jerboa app. Do I have to use the web version or something?

top 8 comments
sorted by: hot top controversial new old
[โ€“] supermurs@lemm.ee 9 points 1 year ago (4 children)

In the web interface there is a setting for 2FA but I couldn't get it to work. For some reason there is no QR code to scan but a link of some kind that does nothing.

[โ€“] B3_CHAD@lemmy.dbzer0.com 4 points 1 year ago

Thanks, I will take a look.

[โ€“] mp3@lemmy.ca 3 points 1 year ago* (last edited 1 year ago)

It's a otpauth:// protocol handler link, which should load fine on mobile if you have an app that supports it.

I do agree that displaying a QR code while on desktop would be more practical. As a workaround, you could use this addon on Firefox to display the otpauth:// link in a QR code format and scan that.

โš  Be careful about not showing this code to anyone else, it contains the secret to the 2FA.> It is generally present in the website interface Iโ€™ve noticed.

[โ€“] Bushwhack@lemmy.world 1 points 1 year ago

For me on iOS it asked me to associate with my iPhone keychain or 1Password. Works great. Dunno what that does elsewhere.

[โ€“] davetansley@lemmy.world 1 points 1 year ago

I got it to work with 1Password, but it seems unfinished and very risky.

To get it to work, I copied the link that the "2FA installation link" button points at, and pasted that into a new 2-factor field in 1password. It presumably was able to extract the secret and start generating the codes. I've tested it and it works.

However, it's risky because Lemmy doesn't verify you have the correct codes before enabling 2FA. It just assumes you'll be able to use the cryptic link for something. So if you log out before you've set it up, and you mess up the set up, you might not be able to get back in. There are no backup codes as far as I can tell.

So if you do attempt it, I would recommend keeping a device logged in so you can disable it if it goes wrong.

[โ€“] calr0x@sh.itjust.works 3 points 1 year ago

It is generally present in the website interface I've noticed.

[โ€“] Generator 1 points 1 year ago

It's on you account settings, but can be risky, since there's no recovery codes. If you lose your TOTP or miss-configure it, you can be lock-out from your account.
It's safer than not use it, but risky if you can't login

[โ€“] T4V0 1 points 1 year ago

The Liftoff app has 2FA.