improve Additional 2FA to support different registration rule and activation rule
Summary
the user can't manage the "additionnal second factor" when he access the 2FA manager (2fregisters) without log with 2FA (only with his password on our secure network), but can manage on 2fregisters both methods "TOTP" and "additional second factor" when he log with 2FA
Both methods are working, but the 2FA manager list only TOTP when the user does not log with 2FA (custom rule + self-registration)
General Parameters / Second factors / Display Manager link
- special rule : $authenticationLevel >= 10 || $ipAddr =~ (our secure network)
General Parameters / Second factors /Additional second factors / monMailPerso
- Registrable : ON
- Level : 10
- Rule : $ipAddr !~ (our network)
General Parameters / Second factors / TOTP
- Self Registration : ON
- Authentication level : 10
- Activation : $_2fDevices =~ /"type":\s*"TOTP"/s && $ipAddr !~ (our network)
Change the "additional second factor" rule doesn't solve the issue