[
https://issues.apache.org/jira/browse/SYNCOPE-1883?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Francesco Chicchiriccò updated SYNCOPE-1883:
--------------------------------------------
Fix Version/s: 3.0.12
> Google MFA authentication does not validate scratch codes
> ---------------------------------------------------------
>
> Key: SYNCOPE-1883
> URL: https://issues.apache.org/jira/browse/SYNCOPE-1883
> Project: Syncope
> Issue Type: Bug
> Components: wa
> Affects Versions: 3.0.11, 4.0.0-M1
> Reporter: Matteo Tatoni
> Assignee: Francesco Chicchiriccò
> Priority: Major
> Fix For: 3.0.12, 4.0.0, 4.1.0
>
>
> If an app is configured through WA to be protected with Google MFA, upon
> first login the system prompts to set up a device for {{OTP}} generation and
> generates {{scratch codes}} for the user to use in case the configured device
> is unavailable. To use the {{scratch codes}}, simply enter one that has never
> been used in place of the {{OTP}} during authentication. However, currently,
> the system raises an exception and does not allow authentication using
> {{scratch codes}}.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
