Beehaw Support @beehaw.org Chahk @beehaw.org 1 yr. ago

Problem setting up 2FA on beehaw.org

I go to Settings, check the "Set up 2-factor authentication" box, click Save, reload the page, but clicking on "2FA installation link" does nothing. I tried copying the "secret" value from the link and using it to manually add an account in my 2FA app (Authy) but that doesn't seem to work. The account gets added, but the codes it generates don't seem to work for logging in (using a different browser).

I really don't want to lock myself out. Am I doing something wrong, or is this a known issue?

12 comments

My experience: Beehaw/Lemmy is using a SHA256 hash for the secret key. A lot of 2FA apps only support SHA1. So you'll need to find one that supports SHA256. I used Google Authenticator. I thought I also saw that Microsoft Authenticator works too. Storing in Bitwarden doesn't work.

Good luck.

I would definitely do all my testing in private browsing or another browser while leaving a browser window logged in to disable 2FA should you need to.
- I have Bitwarden. Don't have an issue. What issue did you run into?
  
  Storing the secret key inside bitwarden produced incorrect codes. Due to Bitwarden only supporting SHA1 while Lemmy/Beehaw using SHA256.

You've viewed 12 comments.