Differences

This shows you the differences between two versions of the page.

--- manuals:vps:users [2019/05/17 17:06] – Add 2fa Aither
+++ manuals:vps:users [2024/01/02 18:09] (current) – Session control aither
@@ Line 40: / Line 40: @@
 [[manuals:vps:api#cli|vpsfreectl]]. Only the
 [[manuals:vps:api#authentication|token authentication]] can be used, HTTP basic
-will cease to work. At this time, it is not possible to log in to this
+will cease to work.
-knowledge base with 2FA, because our
-[[https://github.com/vpsfreecz/haveapi-dokuwiki|plugin]] does not support
-it (pull requests are welcome).
 FA can be enabled in profile settings (vpsAdmin -> Edit profile).
-{{:navody:vps:2faformular.png?200|}}
+{{:navody:vps:2fa_status.png?200|}}
 You can setup TOTP e.g. on your mobile phone using applications like
@@ Line 57: / Line 54: @@
 you can enter the secret key manually.
-{{:navody:vps:qrcode.png?300|}}
+{{:navody:vps:totp_device_confirm.png?300|}}
 Once activated, you will be given a recovery code. This code can be used when
@@ Line 64: / Line 61: @@
 the recovery code, you will have to contact our support to recover your account.
-===== Authentication tokens =====
+You can configure multiple TOTP devices and any one of them can be used to log in.
-Users can authenticate in vpsAdmin using HTTP basic or authentication tokens.
+Individual devices can be temporarily disabled or removed
-The latter can be seen and managed from vpsAdmin (vpsAdmin -> Edit profile ->
+(vpsAdmin -> Edit profile -> TOTP devices).
-Authentication tokens).
-{{navody:vps:user_mail_templates.png?300|}}
+{{:navody:vps:totp_device_list.png?300|}}
-You can see a list of active authentication tokens, their lifetime and who
+===== Session control =====
-created them. This list is useful when you have multiple long-lived tokens for
+In profile settings (vpsAdmin -> Edit profile), there's a "Session control" form:
-various client applications.
-The web UI itself uses authentication tokens. You can create tokens using CLI
+{{:navody:vps:user-session-control.png?300}}
-or any client library and label them, so you'll recognize them in the future.
+  * **Enable single sign-on** will let you enter vpsAdmin credentials once and log in to vpsAdmin, knowledge base and Discourse
+  * **Preferred session length** will configure time to logout on inactivity in vpsAdmin web interface, it defaults to 20 minutes
+  * **Logout all** will always log you out from all sessions of the same client, e.g. if you're logged into vpsAdmin from different browsers or devices, logout on one will logout all of them
 ===== Session log =====
 vpsAdmin logs all user sessions and remembers what actions were performed
 (vpsAdmin -> Edit profile -> Session log).
+{{:navody:vps:user-session-log.png?300}}
 You can see when the session started, ended, what authentication method was
-used, IP addresses, client idenfitication and a list of executed actions in a
+used, IP addresses, client identification and a list of executed actions in a
-particular session.
+particular session. Active sessions have a light green background. The current session
+which is used to view the page has dark green background. You can end active sessions
+by clicking on the trash bin icon.

Knowledge base

User Tools

Site Tools

Differences

Page Tools