HI, I used your tutorial to insert google authenticator , but I have a couple of problems : 1- it doesn't recognize the codes generated by the app to log in from safari and opera 2 - on edge it's fine if I don't nail the pages, as I open a new page it doesn't recognize me anymore the codes, and I have to scan a new qrcode google authenticator. please help me to solve .
Great video Adnan and thanks for sharing. I am trying to run your code on my site so I can see how it would. Everything is running so far but when it pulls up the Google Authenticator apps it asks if I want to accept the myphpnotes token. Where do you change the code so I can have it say my web domain?
But if I understand it well I need to store $secret to the database. QR code is generated once to scan it to the mobile app. Then I need the $secret to verify() the code while every login. Am I right? But how to store the $secret in db in secure way?
How do you make this work with if someone were to register an account myPHPnotes? My website will ask for you to set up 2fa to your account. How would that go? Maybe a tutorial?
I'm a little confused. So it does stop someone like a hacker from entering the wrong code, but what if they just scanned the barcode, would they be able to get the code even though it's registered on your phone? Sorry I'm a little confused.
Yeah I got this working on my site. It's making me scan a new QR code every time I log on. If a hacker breached my first log in, couldnt they just scan that QR code and get themselves on? Im wondering if I've done something wrong. I dont want to have to keep scanning a new QR code.
@@deepgratitude5924 no, you seem to be the only other person that also gets that this is nothing like google's 2FA ... anyone with any phone can get into these sites
@@Vaheen You can fix it. encrpt your key in a database, thats what I did, then instead of generating a new one, just use the one from the DB. Make it so the QR code does not pop up and you are golden. I got it completely implemented.
Yes. Sorry for being at the party. The secret we generated at 1:55 will only be generated once on registration then verified (16:58) to ensure that user has installed the appropriate app for logging in in future and then save the secret in the database along with user's password. After that every time the user tries to log in, he will get QR code in accordance to the secret you had pushed in the database. I am thinking of building a series on SSO using Laravel covering almost all kind of authorization techniques.
Aaa... We are doing some up-gradation on the server end. That's why the server may be temporarily down. If you need any resources, you can mail me at adnanhussainturki@gmail.com.
If it shows you the QR code each time you log in and all you have to do is scan with Google Authenticator to get a number what's the stop somebody just to keep scanning it to get a number like I say stupidest thing I've ever seen
Do you have a video on the authenticator class containing the methods? Thanks
Thank you very much! I now have this integrated on my site :)
+nixnix99 Our Pleasure.
excellent work tenno home back
How many times can you apply with the same qrcod, after how many did you apply for the change?
Thanks for this guide !!! great tool !!! i will use it !!
Thank you! But if I change the "myPHPnotes" to "MyApp", then it will give me invalid QR code. Why is that?
Never mind, the problem was I had a space in that string that I used.
Like the beat in the background whats the title
Drake by Boss Beats:
ua-cam.com/video/RyzgNES3Wns/v-deo.html
HI,
I used your tutorial to insert google authenticator , but I have a couple of problems :
1- it doesn't recognize the codes generated by the app to log in from safari and opera
2 - on edge it's fine if I don't nail the pages, as I open a new page it doesn't recognize me anymore the codes, and I have to scan a new qrcode google authenticator.
please help me to solve .
really thank that was really best and fast guide . Thank you very much! now i used this my site . like you unlimite
$_sesion variable is conflict with my $_session variable can i change this
Great video Adnan and thanks for sharing. I am trying to run your code on my site so I can see how it would. Everything is running so far but when it pulls up the Google Authenticator apps it asks if I want to accept the myphpnotes token. Where do you change the code so I can have it say my web domain?
Nevermind I figured out that you need to change the data in the $qrCodeUrl variable. Thanks again for this neat tool!
@@AaronBregg can you explain please....
@@mdarifhassan9064 In the PHP code look for that variable. Rename it to whatever you want the code to show up 'as' in Google Authenticator.
how to download libraries authenticator.php from mainstream sources
THANKS BRO
But if I understand it well I need to store $secret to the database. QR code is generated once to scan it to the mobile app. Then I need the $secret to verify() the code while every login. Am I right? But how to store the $secret in db in secure way?
Old codes still working forever, lol ... :(
I noticed this won't work if I switch to different browser, or different device. Am I right?
thanks
How do you make this work with if someone were to register an account myPHPnotes?
My website will ask for you to set up 2fa to your account. How would that go? Maybe a tutorial?
I am thinking of building a series on SSO using Laravel covering almost all kind of authorization techniques. Hope that will cover it all.
This code is working even if we are writing old generated code, the old code is expired it should not work on expired code
It should not.
The script makes some margin for some seconds.
You can make sure that it is intact at Authenticator.php's VerifyCode()
The valid code don't run in localhost?
how to run this code on local machine ?
What is the music name?
Drake by Boss Beats:
ua-cam.com/video/RyzgNES3Wns/v-deo.html
How do I get the authenticate.php file?
I'm a little confused. So it does stop someone like a hacker from entering the wrong code, but what if they just scanned the barcode, would they be able to get the code even though it's registered on your phone? Sorry I'm a little confused.
Yeah I got this working on my site. It's making me scan a new QR code every time I log on. If a hacker breached my first log in, couldnt they just scan that QR code and get themselves on? Im wondering if I've done something wrong. I dont want to have to keep scanning a new QR code.
@@deepgratitude5924 no, you seem to be the only other person that also gets that this is nothing like google's 2FA ... anyone with any phone can get into these sites
@@Vaheen You can fix it. encrpt your key in a database, thats what I did, then instead of generating a new one, just use the one from the DB. Make it so the QR code does not pop up and you are golden. I got it completely implemented.
Yes. Sorry for being at the party. The secret we generated at 1:55 will only be generated once on registration then verified (16:58) to ensure that user has installed the appropriate app for logging in in future and then save the secret in the database along with user's password. After that every time the user tries to log in, he will get QR code in accordance to the secret you had pushed in the database.
I am thinking of building a series on SSO using Laravel covering almost all kind of authorization techniques.
I don't think that generating a QR code every time is a good idea. @@myPHPnotes
Can't Access the Source Code problem DNS_PROBE_FINISHED_NXDOMAIN . Please help :D
Aaa... We are doing some up-gradation on the server end. That's why the server may be temporarily down. If you need any resources, you can mail me at adnanhussainturki@gmail.com.
check.php code is not working !! please help
sepe enusi
Is the demo at authenticator.myphpnotes.com is working for you?
yes this works
but with the check.php is not !!
so can you tell me how to fix it !?
+sepe enusi Try RAW source code again.
thank you so much
Why I can't download the source code?
What problem you are facing?
If it shows you the QR code each time you log in and all you have to do is scan with Google Authenticator to get a number what's the stop somebody just to keep scanning it to get a number like I say stupidest thing I've ever seen
You need to step up to understand the thing, Alex. Please try.