Joomla! Issue Tracker | Joomla! CMS #29301 - [4.0b1] Cannot logout from admin after 2fa enforced and 2fa not set up

No Code Attached Yet

Closed
7 Mar 2022
Medium
Build: master
# 29301

PhilETaylor
30 May 2020

Steps to reproduce the issue

Joomla 4.0.0 beta 1
enabling "Enforce 2FA = both" in user options and then publish the Yubikey 2FA plugin in admin
logout

Try to login to ADMIN as super admin (with no 2fa)

You get redirected (correctly) to set up your 2FA which is now enforced

Expected result

The ability to set up a yubikey correctly and save and carry on my life BUT lets say I dont have a yubikey (as lets say I just ordered one) I should be allowed to at least logout!

Actual result

... but I cannot logout, I cannot navigate away from my user profile page, Im stuck in this session.

PhilETaylor - open - 30 May 2020

joomla-cms-bot - change - 30 May 2020

Labels

Added: ?

joomla-cms-bot - labeled - 30 May 2020

HLeithner - comment - 1 Jun 2020

Logout should be possible the rest is ok in my opinion.

PhilETaylor - comment - 1 Jun 2020

see comments on #29302 (comment) - same applies here... too much can be accessed and changed when it should be ONLY 2FA that can be modified.

But at a minimum I should be able to logout. Which I can't.

PhilETaylor - comment - 6 Mar 2022

Still cannot logout.

PhilETaylor - change - 7 Mar 2022

Status	New	⇒	Closed
Closed_Date	0000-00-00 00:00:00	⇒	2022-03-07 18:40:02
Closed_By		⇒	PhilETaylor
Labels	Added: No Code Attached Yet Removed: ?

PhilETaylor - close - 7 Mar 2022

Add a Comment

Older
Newer

Joomla! Issue Tracker - CMS

[#29301] - [4.0b1] Cannot logout from admin after 2fa enforced and 2fa not set up

Steps to reproduce the issue

Expected result

Actual result

Add a Comment