Tidy 2FA code before verification

Pixipea · July 25, 2018, 2:25pm

With 2FA enabled, when the user types in their token with a space, we should automatically remove that before verifying the code.

As per:

maja · July 25, 2018, 3:09pm

We have a limit for how many characters can be entered into the input field and with additional spaces the 2FA code doesn’t fit (which makes it obvious that only numbers should be entered). Should the maxlength="6" attribute of the input field really be loosened to allow any number of spaces the user might want to add?

Pixipea · July 25, 2018, 3:30pm

Perhaps this is just a problem when putting the 2FA code into the enable field, when first setting up 2FA.

Admittedly I am viewing this from more of a plebeian angle, but when I entered my 2FA code from Google Authenticator, which looks like this ### ###, I had no problems entering all 6 characters with the space in between.
Shouldn’t the maxlength=“6” have prevented this?
Maybe change the field input site to be numeric only?

does any of this make sense?

maja · July 25, 2018, 3:37pm

It should indeed, I only checked the input field which is part of login, looks like the other one which is part of enabling 2FA doesn’t have a limit in place. Will change that

maja · August 27, 2018, 8:08am

Fixed while ago in:
https://github.com/discourse/discourse/commit/e8d82f48bca79bcb531d769cda4ed6a24e321bbe

Topic		Replies	Views
Need a call to action after adding 2FA on a 2FA-required site ux	3	714	April 27, 2021
2FA input field is too wide on mobile ux	2	512	June 10, 2018
2FA - do we have to do anything to enable it? support 2fa	12	3519	January 20, 2024
Can't disable 2fa bug	6	622	September 2, 2020
Task "users:disable_2fa" does not disable security keys bug	4	315	March 18, 2023

Tidy 2FA code before verification

Related Topics