How can we disable 2FA for an user while we are using google auth2 login in Discourse?

Swarndeep_Poddar · July 29, 2022, 3:23pm

dax · July 29, 2022, 4:40pm

If the user lost the phone or has no access to the old Authenticator token you can simply destroy the old token entering your Rails console and (after entering the real username instead of <USERNAME>) run

id = User.find_by_username('<USERNAME>').id
UserSecondFactor.where(user_id: id)
UserSecondFactor.where(user_id: id).each(&:destroy!)

The user will be able to request another token during the login

Swarndeep_Poddar · July 29, 2022, 4:55pm

@dax Will it work for my case because I am using google auth2 logins not DiscourseConnect for SSO ?

Topic		Replies	Views
Command line disable Two Factor Authentication Support	13	1795	April 24, 2020
Oops, I lost my phone. How can I OTP now? Support	7	5151	April 18, 2020
Cannot disable 2FA for User Support	6	761	March 7, 2021
How to disable google oauth2 login in the command line SSO	4	616	July 30, 2023
Locked out of own forum. Asking for two-factor verification I never set up. Help : ) Support	6	483	September 30, 2022

How can we disable 2FA for an user while we are using google auth2 login in Discourse?

Related Topics