SlideShare a Scribd company logo

Two factor authentication with Laravel and Google Authenticator

Allan Denot, profile picture
Allan Denot

The document discusses enabling two-factor authentication for user logins using Google Authenticator. It explains how secret keys and QR codes are generated to set up two-factor authentication on a user's device. It then provides code examples for routes to generate secrets, enable two-factor authentication, and verify codes. It also mentions alternatives like using authentication services and links to references for the Google2FA library and authentication services.

Software
1 of 14
Downloaded 83 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
Two-factor Authentication With Laravel and Google Authenticator Allan Denot
How it works adenot@gmail.com Login ************** Submit 461785 Login Submit Two-factor Enabled
How it works MyApp adenot@gmail.com Secret key is randomly generated QR code is generated from secret key and other info User scans QR code using Google Authenticator It starts generating time based codes or tokens Enabling two-factor 372631 7JASV4C4F74ZLAR6
How it works Verifying code 372631 Login Submit Two-factor Enabled + = 372631 ? 372631 7JASV4C4F74ZLAR6
Implementation and Demo
Installing composer require pragmarx/google2fa More information at: https://github. com/antonioribeiro/google2fa
Routes // Generates secret key and QR image Route::get('user/twoFactor/secret', 'UserController@twoFactorSecret'); // Enables two-factor at user profile Route::get('user/twoFactor/enable', 'UserController@twoFactorEnable'); // code, secret // Verify a two-factor code Route::get('user/twoFactor/verify', 'UserController@twoFactorVerify'); // code
{ "two_factor_secret": "3UYJJUQO6O72SJJW", "two_factor_qr": "https://chart.googleapis.com/chart? chs=200x200&chld=M|0&cht=qr&chl=otpauth%3A%2F%2Ftotp%2FSpikeNode%3Aadenot% 40gmail.com%3Fsecret%3D7JASV4C4F74ZLAR6%26issuer%3DSpikeNode" } Generating Secret and QR /api/user/twoFactor/secret
Enabling two-factor /api/user/twoFactor/enable?secret=3UYJJUQO6O72SJJW&code=733005
Verifying /api/user/twoFactor/verify?code=733005
Verify window // Default window is 4 $valid = Google2FA::verifyKey($secret, $code); // Setting to 0 $valid = Google2FA::verifyKey($secret, $code, 0);
Alternatives
Auth as a service https://www.authy.com/ https://auth0.com/
References Google2FA: https://github.com/antonioribeiro/google2fa Authy: https://www.authy.com/ Auth0: https://auth0.com/ allandenot.com adenot@gmail.com

More Related Content

PDF
Efficient Kubernetes scaling using Karpenter
Marko Bevc
 
PDF
Journey to the Cloud with Red Hat
Ken Thompson
 
PDF
Helm 3
Matthew Farina
 
PDF
Orchestration Patterns for Microservices with Messaging by RabbitMQ
VMware Tanzu
 
PDF
Version Control & Git
Jason Byrne
 
PDF
SOLID Design Principles applied in Java
Ionut Bilica
 
PPTX
Api types
Sarah Maddox
 
PDF
Understanding Monorepos
Benjamin Cabanes
 
Efficient Kubernetes scaling using Karpenter
Marko Bevc
 
Journey to the Cloud with Red Hat
Ken Thompson
 
Helm 3
Matthew Farina
 
Orchestration Patterns for Microservices with Messaging by RabbitMQ
VMware Tanzu
 
Version Control & Git
Jason Byrne
 
SOLID Design Principles applied in Java
Ionut Bilica
 
Api types
Sarah Maddox
 
Understanding Monorepos
Benjamin Cabanes
 

What's hot (20)

PDF
도커 무작정 따라하기: 도커가 처음인 사람도 60분이면 웹 서버를 올릴 수 있습니다!
pyrasis
 
PDF
Introduction to TDD and BDD
Luis García Castro
 
PDF
From framework coupled code to #microservices through #DDD /by @codelytv
CodelyTV
 
PPTX
Application Autoscaling Made Easy with Kubernetes Event-Driven Autoscaling (K...
Codit
 
PDF
gRPC with java
Knoldus Inc.
 
PDF
Gitlab CI : Integration et Déploiement Continue
Vincent Composieux
 
PDF
An Introduction to Rancher
Conner Swann
 
PDF
Kubernetes Introduction
Peng Xiao
 
PPTX
Domain Driven Design in Rails
Hans Yu
 
PDF
Building High Performance APIs In Go Using gRPC And Protocol Buffers
Shiju Varghese
 
PDF
Docker Registry V2
Docker, Inc.
 
PDF
Réussir la Construction du cahier des charges de son site web WordPress
Julien Dereumaux
 
PPT
Apache Ant
Vinod Kumar V H
 
PPTX
Troubleshooting common oslo.messaging and RabbitMQ issues
Michael Klishin
 
PDF
Istio presentation jhug
Georgios Andrianakis
 
PPTX
Ventajas y Desventajas de Apache y IIS
klucho19
 
PDF
KubeConEU - NATS Deep Dive
wallyqs
 
PDF
OpenShift Overview
roundman
 
PDF
Intro to git and git hub
JasleenSondhi
 
PPTX
Flusso Continuous Integration & Continuous Delivery
Joost van der Griendt
 
도커 무작정 따라하기: 도커가 처음인 사람도 60분이면 웹 서버를 올릴 수 있습니다!
pyrasis
 
Introduction to TDD and BDD
Luis García Castro
 
From framework coupled code to #microservices through #DDD /by @codelytv
CodelyTV
 
Application Autoscaling Made Easy with Kubernetes Event-Driven Autoscaling (K...
Codit
 
gRPC with java
Knoldus Inc.
 
Gitlab CI : Integration et Déploiement Continue
Vincent Composieux
 
An Introduction to Rancher
Conner Swann
 
Kubernetes Introduction
Peng Xiao
 
Domain Driven Design in Rails
Hans Yu
 
Building High Performance APIs In Go Using gRPC And Protocol Buffers
Shiju Varghese
 
Docker Registry V2
Docker, Inc.
 
Réussir la Construction du cahier des charges de son site web WordPress
Julien Dereumaux
 
Apache Ant
Vinod Kumar V H
 
Troubleshooting common oslo.messaging and RabbitMQ issues
Michael Klishin
 
Istio presentation jhug
Georgios Andrianakis
 
Ventajas y Desventajas de Apache y IIS
klucho19
 
KubeConEU - NATS Deep Dive
wallyqs
 
OpenShift Overview
roundman
 
Intro to git and git hub
JasleenSondhi
 
Flusso Continuous Integration & Continuous Delivery
Joost van der Griendt
 
Ad

Viewers also liked (20)

PDF
Ansible with AWS
Allan Denot
 
PDF
Two-factor Authentication
PortalGuard dba PistolStar, Inc.
 
PPTX
2FA Protocol Presentation
Akhil Agrawal
 
PPT
9 password security
drewz lin
 
DOC
4 dezv-prenat-ii 2013
jennypain
 
PDF
SCREAM-15: Authentication and Authorization Considerations for a Multi-tenant...
heiland
 
PDF
Security Authentication and Authorization Service (AAS) for IBM InfoSphere St...
lisanl
 
PDF
The Back to School Smartphone Guide
Lookout
 
PDF
Two Factor Authentication and You
Chris Stone
 
PPTX
captcha as a graphical password
VishnuVardhan mooli
 
PDF
Two-factor Authentication
PortalGuard dba PistolStar, Inc.
 
PDF
3 Ways to Protect the Data in Your Apple Account
Lookout
 
PPTX
REST Service Authetication with TLS & JWTs
Jon Todd
 
PPTX
Graphical password authentication system with association of sound
Vikram Verma
 
DOC
Seminar report on captcha
kunalkiit
 
PDF
Tomasz Janczuk - Webtaskalifragilistexpialidocious
ServerlessConf
 
PPTX
Security models for security architecture
Vladimir Jirasek
 
PPT
graphical password authentication
Akhil Kumar
 
PDF
3D Password PPT
Seminar Links
 
PPTX
NIST CyberSecurity Framework: An Overview
Tandhy Simanjuntak
 
Ansible with AWS
Allan Denot
 
Two-factor Authentication
PortalGuard dba PistolStar, Inc.
 
2FA Protocol Presentation
Akhil Agrawal
 
9 password security
drewz lin
 
4 dezv-prenat-ii 2013
jennypain
 
SCREAM-15: Authentication and Authorization Considerations for a Multi-tenant...
heiland
 
Security Authentication and Authorization Service (AAS) for IBM InfoSphere St...
lisanl
 
The Back to School Smartphone Guide
Lookout
 
Two Factor Authentication and You
Chris Stone
 
captcha as a graphical password
VishnuVardhan mooli
 
Two-factor Authentication
PortalGuard dba PistolStar, Inc.
 
3 Ways to Protect the Data in Your Apple Account
Lookout
 
REST Service Authetication with TLS & JWTs
Jon Todd
 
Graphical password authentication system with association of sound
Vikram Verma
 
Seminar report on captcha
kunalkiit
 
Tomasz Janczuk - Webtaskalifragilistexpialidocious
ServerlessConf
 
Security models for security architecture
Vladimir Jirasek
 
graphical password authentication
Akhil Kumar
 
3D Password PPT
Seminar Links
 
NIST CyberSecurity Framework: An Overview
Tandhy Simanjuntak
 
Ad

Similar to Two factor authentication with Laravel and Google Authenticator (20)

PDF
Easy logins for JavaScript web applications
Francois Marier
 
PDF
Killing Passwords with JavaScript
Francois Marier
 
PDF
Hybrid Tips & Tricks
Sashko Peshevski
 
PDF
Easy logins for Ruby web applications
Francois Marier
 
PDF
Securing the Web without site-specific passwords
Francois Marier
 
PDF
WebAuthn and Security Keys
FIDO Alliance
 
PDF
Fun With Spring Security
Burt Beckwith
 
PDF
A Detailed Guide to Securing React applications with Keycloak - WalkingTree ...
Ganesh Kumar
 
PDF
Webauthn Tutorial
FIDO Alliance
 
PDF
Serverless Angular, Material, Firebase and Google Cloud applications
Loiane Groner
 
PPTX
U2F/FIDO2 implementation of YubiKey
Haniyama Wataru
 
PDF
Cross-Platform Authentication with Google+ Sign-In
Peter Friese
 
PPTX
Drive chrome(headless) with puppeteer
VodqaBLR
 
PPTX
Relational Database Access with Python
Mark Rees
 
PPTX
Up and Running with Angular
Justin James
 
PPTX
Docker on openstack by OpenSource Consulting
Open Source Consulting
 
PPT
Nagios Conference 2013 - Troy Lea - Leveraging and Understanding Performance ...
Nagios
 
PDF
Configuring kerberos based sso in weblogic
Harihara sarma
 
KEY
FLAR Workflow
Jesse Freeman
 
PDF
Distributed ID generator in ChatWork
TanUkkii
 
Easy logins for JavaScript web applications
Francois Marier
 
Killing Passwords with JavaScript
Francois Marier
 
Hybrid Tips & Tricks
Sashko Peshevski
 
Easy logins for Ruby web applications
Francois Marier
 
Securing the Web without site-specific passwords
Francois Marier
 
WebAuthn and Security Keys
FIDO Alliance
 
Fun With Spring Security
Burt Beckwith
 
A Detailed Guide to Securing React applications with Keycloak - WalkingTree ...
Ganesh Kumar
 
Webauthn Tutorial
FIDO Alliance
 
Serverless Angular, Material, Firebase and Google Cloud applications
Loiane Groner
 
U2F/FIDO2 implementation of YubiKey
Haniyama Wataru
 
Cross-Platform Authentication with Google+ Sign-In
Peter Friese
 
Drive chrome(headless) with puppeteer
VodqaBLR
 
Relational Database Access with Python
Mark Rees
 
Up and Running with Angular
Justin James
 
Docker on openstack by OpenSource Consulting
Open Source Consulting
 
Nagios Conference 2013 - Troy Lea - Leveraging and Understanding Performance ...
Nagios
 
Configuring kerberos based sso in weblogic
Harihara sarma
 
FLAR Workflow
Jesse Freeman
 
Distributed ID generator in ChatWork
TanUkkii
 

Recently uploaded (20)

PDF
Design an Analysis of Algorithms II-SECS-1021-03
DilanEscobar1
 
PPT
Introduction Database Management System for Course Database
ReinertYosua
 
PDF
medical staffing services at VALiNTRY
Tiyan Grayson
 
PPTX
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
PDF
System and Network Administration Chapter 2
jaramharo
 
PDF
Claude Code: Everyone is a 10x Developer - A Comprehensive AI-Powered CLI Tool
William Chong
 
PDF
wealthsignaloriginal-com-DS-text-... (1).pdf
skmiani786
 
PPTX
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
PDF
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
PDF
Raksha Bandhan Grocery Pricing Trends in India 2025.pdf
Actowiz Solustions
 
PDF
Internet Downloader Manager (IDM) Crack 6.42 Build 41
ghrom2211g
 
PPTX
Transform Your Business with a Software ERP System
Canada Software Company
 
PDF
SAP S4 Hana Brochure 3 (PTS SYSTEMS AND SOLUTIONS)
pts464036
 
PPTX
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
PDF
Adobe Illustrator 28.6 Crack My Vision of Vector Design
ghrom2211g
 
PPTX
ai tools demonstartion for schools and inter college
harshavardhanreddyka11
 
PPTX
Reimagine Home Health with the Power of Agentic AI​
AutomationEdge Technologies
 
PDF
EN-Survey-Report-SAP-LeanIX-EA-Insights-2025.pdf
deepakkhaitan3
 
PPTX
Introduction to Artificial Intelligence
lohedi9363
 
PDF
How to Migrate SBCGlobal Email to Yahoo Easily
raymondjones7273
 
Design an Analysis of Algorithms II-SECS-1021-03
DilanEscobar1
 
Introduction Database Management System for Course Database
ReinertYosua
 
medical staffing services at VALiNTRY
Tiyan Grayson
 
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
System and Network Administration Chapter 2
jaramharo
 
Claude Code: Everyone is a 10x Developer - A Comprehensive AI-Powered CLI Tool
William Chong
 
wealthsignaloriginal-com-DS-text-... (1).pdf
skmiani786
 
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
Raksha Bandhan Grocery Pricing Trends in India 2025.pdf
Actowiz Solustions
 
Internet Downloader Manager (IDM) Crack 6.42 Build 41
ghrom2211g
 
Transform Your Business with a Software ERP System
Canada Software Company
 
SAP S4 Hana Brochure 3 (PTS SYSTEMS AND SOLUTIONS)
pts464036
 
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
Adobe Illustrator 28.6 Crack My Vision of Vector Design
ghrom2211g
 
ai tools demonstartion for schools and inter college
harshavardhanreddyka11
 
Reimagine Home Health with the Power of Agentic AI​
AutomationEdge Technologies
 
EN-Survey-Report-SAP-LeanIX-EA-Insights-2025.pdf
deepakkhaitan3
 
Introduction to Artificial Intelligence
lohedi9363
 
How to Migrate SBCGlobal Email to Yahoo Easily
raymondjones7273
 

Two factor authentication with Laravel and Google Authenticator