Skip to content

Commit 3ddf6a1

Browse files
dormant-userdormant-user
committed
Update documentation
1 parent 2929a6a commit 3ddf6a1

File tree

2 files changed

+8
-0
lines changed

2 files changed

+8
-0
lines changed

README.md

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -28,6 +28,9 @@ This project is a fork of the [filebrowser](https://github.com/filebrowser/fileb
2828
- `allowPrivateIP` - Boolean flag to allow private IP address of the host machine.
2929
- `allowPublicIP`- Boolean flag to allow public IP address of the host machine.
3030

31+
* **Multifactor Authentication** MFA has been implemented using TOTP which significantly improves security by adding a second layer of verification to the authenticate the server.
32+
* To generate a TOTP token, run ``python thevickypedia_scripts/otp.py``, and scan the ``totp_qr.png`` using any authenticator app.
33+
3134
> These changes significantly improve the security posture of a basic authentication mechanism.
3235
3336
**File Details:**

thevickypedia_scripts/README.md

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -5,8 +5,13 @@
55
`frontend/src/utils/auth.ts` - Set authorization header
66
`auth/json.go` - Decrypt authorization header
77
`auth/database.go` - Handle auth errors
8+
`http/connection.go` - Handles connection logging
89

910
2. Handle allowed origins
1011

1112
`cmd/root.go` - Background task
1213
`cmd/ip_addresses.go` - Refresh allowed origins in the background
14+
15+
3. OTP
16+
17+
`users/otp.go` - Verifies the one-time passcode.

0 commit comments

Comments
 (0)