Changes for page XWiki Two-Factor Authentication

Last modified by Agnease on 2026/06/24 16:39

Manage
- Copy
Actions
- Export
- Print Preview
Viewers
- Source
- Siblings
- Content
- Comments
- Attachments (13)
- History
- Information
- Likes

From 23.12 to 23.11 From 25.3 to 25.2

From version 25.2

edited by Agnease
on 2026/06/24 16:10

Change comment: There is no comment for this version

To version 23.12

edited by Agnease
on 2026/06/24 15:58

Change comment: There is no comment for this version

Raw
Rendered

Summary

Page properties (2 modified, 0 added, 0 removed)
Objects (1 modified, 0 added, 0 removed)
- Agnease.Code.SEODetailsClass[0]

Details

Page properties

Title

@@ -1,1 +1,1 @@
--XWiki Two-Factor Authentication
++XWiki Multi‑Factor Authentication

Content

@@ -1,12 +1,13 @@
  {{velocity}}
  #set ($discard = $xwiki.ssx.use('PublicWebSite.WebHome'))
++#set ($discard = $xwiki.ssx.use('products.WebHome'))
  #set ($mainCapabilityItems = [{
--  'title': 'Second verification step',
++  'title': 'MFA login protection',
    'icon': 'key',
--  'content': 'Add an additional verification screen after the normal XWiki username and password login.'
++  'content': 'Add an additional verification step after the normal XWiki username and password login.'
  },{
--  'title': 'Authenticator app codes',
++  'title': 'Authenticator app verification',
    'icon': 'mobile',
    'content': 'Let users verify access with time-based TOTP codes generated by authenticator applications.'
  },{
@@ -16,9 +16,9 @@
  }])
  #set ($adminExperienceItems = [{
--  'title': 'Rollout policy',
++  'title': 'MFA policy',
    'icon': 'cog',
--  'content': 'Make additional verification optional at first or required for all users from the XWiki Administration section.'
++  'content': 'Make MFA optional or required for all users from the XWiki Administration section.'
  },{
    'title': 'Configuration options',
    'icon': 'sliders',
@@ -26,17 +26,17 @@
  },{
    'title': 'Administration overview',
    'icon': 'table',
--  'content': 'Review adoption with summary indicators and a filterable Live Data table.'
++  'content': 'Review MFA adoption with summary indicators and a filterable Live Data table.'
  }])
  #set ($userExperienceItems = [{
    'title': 'Self-service setup',
    'icon': 'qrcode',
--  'content': 'Users configure the second verification step from their profile by scanning a QR code or entering the setup key manually.'
++  'content': 'Users configure MFA from their profile by scanning a QR code or entering the setup key manually.'
  },{
    'title': 'Login verification',
    'icon': 'sign-in',
--  'content': 'After the normal login, users enter the verification code generated by their authenticator app.'
++  'content': 'After the normal login, users enter the code generated by their authenticator app.'
  },{
    'title': 'Trusted browser option',
    'icon': 'desktop',
@@ -54,21 +54,21 @@
  },{
    'title': 'Profile management',
    'icon': 'user',
--  'content': 'Users can review status, generate recovery codes, manage trusted devices and reset their setup.'
++  'content': 'Users can review MFA status, generate recovery codes, manage trusted devices and reset MFA.'
  }])
  #set ($adminSupportItems = [{
--  'title': 'User status',
++  'title': 'User MFA status',
    'icon': 'user',
--  'content': 'Administrators can open a user profile and check the verification status for that account.'
++  'content': 'Administrators can open a user profile and check the MFA status for that account.'
  },{
--  'title': 'Setup reset',
++  'title': 'MFA reset',
    'icon': 'refresh',
--  'content': 'Administrators can reset the setup when a user needs to restart the configuration process.'
++  'content': 'Administrators can reset MFA when a user needs to restart the configuration process.'
  },{
    'title': 'Controlled recovery',
    'icon': 'unlock-alt',
--  'content': 'Resetting the setup removes the authenticator configuration, recovery codes and trusted devices for that user.'
++  'content': 'Resetting MFA removes the authenticator setup, recovery codes and trusted devices for that user.'
  }])
  #set ($rolloutItems = [{
@@ -75,17 +75,17 @@
    'title': 'Start with a pilot group',
    'content': 'Test the extension with administrators or a small user group before enabling it widely.'
  },{
--  'title': 'Define the rollout policy',
--  'content': 'Decide whether additional verification should be optional at first or required for all users.'
++  'title': 'Define the MFA policy',
++  'content': 'Decide whether MFA should be optional at first or required for all users.'
  },{
    'title': 'Configure recovery options',
    'content': 'Choose the number of recovery codes and whether trusted devices should be allowed.'
  },{
    'title': 'Inform users',
--  'content': 'Explain how users configure the authenticator app, save recovery codes and manage trusted devices.'
++  'content': 'Explain how users configure MFA, save recovery codes and manage trusted devices.'
  },{
    'title': 'Monitor adoption',
--  'content': 'Use the administration overview to identify users who still need to configure protection.'
++  'content': 'Use the administration overview to identify users who still need to configure MFA.'
  }])
  {{html clean="false"}}
@@ -94,14 +94,14 @@
    <div class="container hero-inner">
      <div class="hero-kicker">
        <i class="fa fa-lock" aria-hidden="true"></i>
--      XWiki 2FA with MFA rollout support
++      XWiki MFA and 2FA
      </div>
--    <h1 id="product-title">XWiki Two-Factor Authentication</h1>
++    <h1 id="product-title">XWiki MFA and Two-Factor Authentication</h1>
      <p class="lead">
--      Protect XWiki logins with authenticator app verification, recovery codes,
--      trusted devices and administration controls for a safer rollout.
++      Add multi-factor authentication to XWiki with authenticator app verification,
++      recovery codes, trusted devices, user self-service and administrator monitoring.
      </p>
      <div class="hero-actions">
@@ -115,18 +115,18 @@
    <div class="container">
      <div class="product-layout">
        <article class="product-summary-card">
--        <h2 id="overview-title">Two-factor authentication built into XWiki</h2>
++        <h2 id="overview-title">MFA support built into the XWiki login flow</h2>
          <p>
--          XWiki Two-Factor Authentication adds an additional verification step to the standard
--          XWiki login flow. Users continue to sign in with their normal username and password,
--          then confirm access with a time-based code from an authenticator application.
++          XWiki Two-Factor Authentication adds MFA support to the standard XWiki login flow.
++          Users continue to sign in with their normal username and password, then confirm access
++          with a time-based verification code from an authenticator application.
          </p>
          <p>
--          The application has evolved beyond a simple login-code screen. It also supports
--          global enforcement, recovery codes, trusted devices, user self-service management,
--          administrator reset actions and an administration overview for monitoring adoption.
++          Beyond the login verification step, the extension also supports recovery codes, trusted devices,
++          user self-service management, administrator reset actions and an administration overview for
++          monitoring MFA adoption.
          </p>
        </article>
@@ -135,7 +135,7 @@
          <ul>
            <li>Works with the standard XWiki login flow</li>
            <li>Supports TOTP authenticator applications</li>
--          <li>Can require additional verification for all users</li>
++          <li>Can require MFA for all users</li>
            <li>Includes one-time recovery codes</li>
            <li>Can remember trusted browsers or devices</li>
            <li>Includes user self-service controls</li>
@@ -148,11 +148,10 @@
  <section aria-labelledby="capabilities-title">
    <div class="container">
--    <h2 id="capabilities-title">Main capabilities</h2>
++    <h2 id="capabilities-title">Main MFA capabilities</h2>
      <p class="section-intro">
--      A focused set of authentication protection features for stronger XWiki account security
--      without replacing the familiar login experience.
++      A focused set of MFA features for stronger XWiki account protection without replacing the familiar login experience.
      </p>
      <div class="product-feature-grid">
@@ -176,7 +176,7 @@
    <div class="container">
      <div class="product-layout">
        <article class="product-summary-card">
--        <h2 id="security-title">Useful for XWiki security and access protection</h2>
++        <h2 id="security-title">MFA for XWiki security and access protection</h2>
          <p>
            Many organizations use XWiki to store internal documentation, procedures, operational
@@ -210,8 +210,7 @@
      <h2 id="admin-experience-title">Administrator configuration and monitoring</h2>
      <p class="section-intro">
--      Administrators can configure the policy, define recovery options and monitor adoption
--      from the XWiki Administration section.
++      Administrators can configure the MFA policy, define recovery options and monitor adoption from the XWiki Administration section.
      </p>
      <div class="product-feature-grid">
@@ -240,7 +240,7 @@
  {{html clean="false"}}
      <p class="product-gallery-caption">
--      Administration screens for configuring the policy and reviewing adoption across users.
++      Administration screens for configuring MFA and reviewing MFA adoption across users.
      </p>
    </div>
  </section>
@@ -250,8 +250,7 @@
      <h2 id="user-experience-title">User setup and login verification</h2>
      <p class="section-intro">
--      Users can configure the authenticator app from their profile or during the enforced setup flow,
--      then verify future logins with a generated code.
++      Users can configure MFA from their profile or during the enforced setup flow, then verify future logins with their authenticator app.
      </p>
      <div class="product-feature-grid">
@@ -280,7 +280,7 @@
  {{html clean="false"}}
      <p class="product-gallery-caption">
--      User setup, enforced configuration and login verification screens.
++      User setup, enforced MFA configuration and login verification screens.
      </p>
    </div>
  </section>
@@ -287,7 +287,7 @@
  <section aria-labelledby="self-service-title">
    <div class="container">
--    <h2 id="self-service-title">Recovery codes and trusted devices</h2>
++    <h2 id="self-service-title">MFA recovery codes and trusted devices</h2>
      <p class="section-intro">
        Recovery codes and trusted devices help balance stronger access protection with a smoother user experience.
@@ -321,7 +321,7 @@
  {{html clean="false"}}
      <p class="product-gallery-caption">
--      User profile screens for recovery codes, trusted devices and self-service management.
++      User profile screens for recovery codes, trusted devices and MFA self-service management.
      </p>
    </div>
  </section>
@@ -331,7 +331,7 @@
      <h2 id="admin-support-title">Administrator support and user recovery</h2>
      <p class="section-intro">
--      Administrators can help users recover from lost devices or restart setup when needed.
++      Administrators can help users recover from lost devices or restart MFA setup when needed.
      </p>
      <div class="product-feature-grid">
@@ -358,41 +358,35 @@
  {{html clean="false"}}
      <p class="product-gallery-caption">
--      Administrator view for checking and resetting a user setup.
++      Administrator view for checking and resetting a user MFA setup.
      </p>
    </div>
  </section>
--<section aria-labelledby="faq-title">
++<section aria-labelledby="mfa-faq-title">
    <div class="container">
--    <h2 id="faq-title">Frequently asked questions</h2>
++    <h2 id="mfa-faq-title">MFA questions</h2>
--    <p class="section-intro">
--      Common questions about how the extension works, how users configure it and how administrators can manage rollout and recovery.
--    </p>
--
      <div class="resource-content">
        <details class="resource-faq-item">
--        <summary>Does this extension replace the standard XWiki login?</summary>
++        <summary>Is this an MFA or 2FA extension?</summary>
          <p>
--          No. Users still sign in with their normal XWiki username and password. The extension adds
--          an additional verification step after the standard login check.
++          It is best described as an MFA extension for XWiki. The most visible login flow is two-factor authentication,
++          but the extension also includes MFA policy, recovery codes, trusted devices, user self-service and administrator monitoring.
          </p>
        </details>
        <details class="resource-faq-item">
--        <summary>Which verification method is used?</summary>
++        <summary>Does it replace the standard XWiki login?</summary>
          <p>
--          Users verify access with time-based codes generated by an authenticator application.
--          The setup page provides a QR code and a manual setup key.
++          No. It adds an additional verification step after the normal XWiki username and password login.
          </p>
        </details>
        <details class="resource-faq-item">
--        <summary>Can the second verification step be required for all users?</summary>
++        <summary>Which verification method is used?</summary>
          <p>
--          Yes. Administrators can make the verification step optional or required for all users
--          from the XWiki Administration section.
++          Users verify access with time-based codes generated by an authenticator application.
          </p>
        </details>
@@ -399,36 +399,9 @@
        <details class="resource-faq-item">
          <summary>What happens if a user loses access to the authenticator app?</summary>
          <p>
--          Recovery codes can provide backup access when enabled. Administrators can also reset
--          the user setup so the configuration process can be restarted.
++          Recovery codes can provide backup access when enabled. Administrators can also reset the user MFA setup.
          </p>
        </details>
--
--      <details class="resource-faq-item">
--        <summary>Can trusted browsers or devices be disabled?</summary>
--        <p>
--          Yes. Administrators can configure how long trusted devices remain valid. Setting the
--          trusted-device duration to 0 disables this option.
--        </p>
--      </details>
--
--      <details class="resource-faq-item">
--        <summary>Is this only a basic 2FA login-code screen?</summary>
--        <p>
--          No. The main login mechanism is two-factor authentication, but the application also includes
--          features needed for a safer organization-wide rollout: enforcement policy, recovery codes,
--          trusted devices, user self-service, administrator monitoring and administrator reset actions.
--        </p>
--      </details>
--
--      <details class="resource-faq-item">
--        <summary>Is this enough for compliance on its own?</summary>
--        <p>
--          No. This extension provides an important access-protection control, but it should be part
--          of a broader security and compliance approach that includes permissions, upgrades,
--          infrastructure, monitoring and operational procedures.
--        </p>
--      </details>
      </div>
    </div>
  </section>
@@ -437,12 +437,11 @@
    <div class="container">
      <div class="product-layout">
        <article class="product-summary-card">
--        <h2 id="rollout-title">Rollout recommendations</h2>
++        <h2 id="rollout-title">MFA rollout recommendations</h2>
          <p>
--          For a smooth rollout, start with a small administrator or pilot group before requiring
--          the additional verification step for everyone. This helps validate the configuration,
--          prepare user communication and reduce support issues.
++          For a smooth rollout, start with a small administrator or pilot group before requiring MFA for everyone.
++          This helps validate the configuration, prepare user communication and reduce support issues.
          </p>
          <ol class="process-list">
@@ -466,7 +466,7 @@
            <li>XWiki version</li>
            <li>Single wiki or wiki farm with subwikis</li>
            <li>Current authentication setup</li>
--          <li>Optional or required rollout policy</li>
++          <li>Optional or globally required MFA policy</li>
            <li>Trusted-device policy</li>
            <li>Recovery-code policy</li>
            <li>Rollout communication needs</li>
@@ -479,10 +479,10 @@
  <section class="cta-section" aria-labelledby="cta-title">
    <div class="container">
      <div class="cta-panel">
--      <h2 id="cta-title">Interested in using this extension?</h2>
++      <h2 id="cta-title">Interested in XWiki MFA?</h2>
        <p>
--        Send a short message with your XWiki version, current authentication setup and rollout goal.
++        Send a short message with your XWiki version, current authentication setup and MFA rollout goal.
        </p>
        <a class="btn btn-primary" href="$xwiki.getURL('contact.WebHome')">Contact Agnease</a>

Agnease.Code.SEODetailsClass[0]

metaDescription

@@ -1,1 +1,1 @@
--Agnease Two-Factor Authentication for XWiki adds a second login verification step with authenticator app codes, email codes, combined verification and trusted-device remembering.
++Agnease Multi‑Factor Authentication for XWiki adds secure login verification using authenticator app codes, email codes, combined verification, recovery codes, and trusted‑device remembering.

metaTitle

@@ -1,1 +1,1 @@
--XWiki Two-Factor Authentication with 2FA and MFA Support | Agnease
++XWiki Multi‑Factor Authentication (MFA) with 2FA Support | Agnease