Skip to Content
Last modified by Alex Cotiugă on 2026/05/12 20:32
Show last authors
1 {{velocity}}
2 #set ($discard = $xwiki.ssx.use('PublicWebSite.WebHome'))
3 #set ($discard = $xwiki.ssx.use('products.WebHome'))
4 {{html clean="false"}}
5
6 <section class="hero hero-centered product-hero" aria-labelledby="product-title">
7 <div class="container hero-inner">
8 <div class="product-kicker">
9 <i class="fa fa-lock" aria-hidden="true"></i>
10 XWiki security extension
11 </div>
12
13 <h1 id="product-title">XWiki Two-Factor Authentication</h1>
14
15 <p class="lead">
16 Add a second verification step to the standard XWiki login flow.
17 </p>
18
19 <p class="hero-support">
20 This extension protects XWiki accounts with time-based one-time verification codes while keeping the familiar
21 XWiki username and password authentication as the first login step.
22 </p>
23
24 <div class="hero-actions">
25 <a class="btn btn-primary" href="$xwiki.getURL('contact.WebHome')">Ask about this extension</a>
26 <a class="btn btn-secondary" href="$xwiki.getURL('products.WebHome')">View all products</a>
27 </div>
28 </div>
29 </section>
30
31 <section aria-labelledby="overview-title">
32 <div class="container">
33 <div class="product-layout">
34 <article class="product-summary-card">
35 <h2 id="overview-title">Stronger login protection for XWiki</h2>
36
37 <p>
38 The XWiki Two-Factor Authentication extension adds an additional verification screen after the standard
39 username and password login. Users confirm their identity with a time-based one-time code before accessing
40 the wiki.
41 </p>
42
43 <p>
44 The extension is designed for organizations that want to improve account security while keeping authentication
45 close to the standard XWiki login experience.
46 </p>
47
48 <p>
49 It can be useful for internal knowledge bases, intranets, documentation platforms, SOP systems, or other
50 XWiki environments where access to content and administration should be better protected.
51 </p>
52 </article>
53
54 <aside class="product-info-card" aria-labelledby="quick-facts-title">
55 <h3 id="quick-facts-title">Quick facts</h3>
56 <ul>
57 <li>Works with the standard XWiki login flow</li>
58 <li>Adds a second TOTP verification step</li>
59 <li>Configuration available from wiki administration</li>
60 <li>User setup available during login or from the user profile</li>
61 <li>Administrators can enable, disable or reset MFA for users</li>
62 <li>Can be used on the main wiki and subwikis</li>
63 </ul>
64 </aside>
65 </div>
66 </div>
67 </section>
68
69 <section aria-labelledby="features-title">
70 <div class="container">
71 <h2 id="features-title">Main capabilities</h2>
72 <p class="section-intro">
73 The extension focuses on adding a practical second authentication step while keeping the standard XWiki login
74 process and administration experience understandable.
75 </p>
76
77 <div class="product-feature-grid">
78 <article class="product-feature">
79 <div class="feature-icon">
80 <i class="fa fa-key" aria-hidden="true"></i>
81 </div>
82 <h3>Second login step</h3>
83 <p>
84 After the username and password are verified, users are asked to enter a time-based verification code.
85 </p>
86 </article>
87
88 <article class="product-feature">
89 <div class="feature-icon">
90 <i class="fa fa-qrcode" aria-hidden="true"></i>
91 </div>
92 <h3>User setup screen</h3>
93 <p>
94 Users can configure their verification code setup during login or from their XWiki profile when needed.
95 </p>
96 </article>
97
98 <article class="product-feature">
99 <div class="feature-icon">
100 <i class="fa fa-sliders" aria-hidden="true"></i>
101 </div>
102 <h3>Administration controls</h3>
103 <p>
104 Administrators can enable the feature globally, manage user-level activation, and reset a user setup when required.
105 </p>
106 </article>
107
108 <article class="product-feature">
109 <div class="feature-icon">
110 <i class="fa fa-user" aria-hidden="true"></i>
111 </div>
112 <h3>Profile integration</h3>
113 <p>
114 The extension adds user profile controls so the second-factor setup can be reviewed or reset from XWiki.
115 </p>
116 </article>
117
118 <article class="product-feature">
119 <div class="feature-icon">
120 <i class="fa fa-random" aria-hidden="true"></i>
121 </div>
122 <h3>Fallback behavior</h3>
123 <p>
124 The extension can fall back to standard XWiki authentication when the feature is not enabled or not configured.
125 </p>
126 </article>
127
128 <article class="product-feature">
129 <div class="feature-icon">
130 <i class="fa fa-sitemap" aria-hidden="true"></i>
131 </div>
132 <h3>Main wiki and subwikis</h3>
133 <p>
134 The extension is designed to support XWiki environments using the main wiki and subwikis.
135 </p>
136 </article>
137 </div>
138 </div>
139 </section>
140
141 <section aria-labelledby="use-cases-title">
142 <div class="container">
143 <div class="product-layout">
144 <article class="product-summary-card">
145 <h2 id="use-cases-title">When this extension is useful</h2>
146
147 <p>
148 Two-factor authentication is especially relevant when XWiki contains internal documentation, procedures,
149 customer information, project knowledge, administrative pages, or business-critical content.
150 </p>
151
152 <p>
153 It is also useful when many users access the wiki remotely, when administrator accounts need stronger protection,
154 or when the organization wants to reduce the risk of compromised passwords.
155 </p>
156 </article>
157
158 <aside class="product-info-card" aria-labelledby="good-fit-title">
159 <h3 id="good-fit-title">Good fit for</h3>
160 <ul>
161 <li>Private XWiki knowledge bases</li>
162 <li>Company intranets</li>
163 <li>SOP and controlled-document platforms</li>
164 <li>Documentation portals with sensitive content</li>
165 <li>Wikis with several administrators or remote users</li>
166 </ul>
167 </aside>
168 </div>
169 </div>
170 </section>
171
172 #*
173 <section aria-labelledby="gallery-title">
174 <div class="container">
175 <div class="product-gallery-panel">
176 <h2 id="gallery-title">Screenshots</h2>
177 <p class="gallery-note">
178 Use this area to show the login verification screen, first-time setup, user profile controls,
179 and administration configuration.
180 </p>
181
182 <div class="product-gallery-placeholder">
183 Replace this placeholder with the XWiki gallery macro and 3-5 screenshots from the application.
184 </div>
185 </div>
186 </div>
187 </section>
188 *#
189 <section class="cta-section" aria-labelledby="cta-title">
190 <div class="container">
191 <div class="cta-panel">
192 <h2 id="cta-title">Interested in using this extension?</h2>
193 <p>
194 Send a short message with your XWiki version, authentication setup, and whether you use a single wiki
195 or a main wiki with subwikis.
196 </p>
197 <a class="btn btn-primary" href="$xwiki.getURL('contact.WebHome')">Contact Agnease</a>
198 </div>
199 </div>
200 </section>
201
202 {{/html}}
203 {{/velocity}}