[Bug 35601] New: Cannot go into Cataloging->Export when 2FA is enabled
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35601 Bug ID: 35601 Summary: Cannot go into Cataloging->Export when 2FA is enabled Change sponsored?: --- Product: Koha Version: master Hardware: All OS: All Status: NEW Severity: normal Priority: P5 - low Component: Staff interface Assignee: koha-bugs@lists.koha-community.org Reporter: schodkowy.omegi-0r@icloud.com QA Contact: testopia@bugs.koha-community.org CC: gmcharlt@gmail.com After enabling 2FA authentication for a user, they cannot go into /cgi-bin/koha/tools/export.pl anymore (Cataloging -> Export catalog). It prompts them to log-in again instantly, but putting in the email+password, and then 2FA code, it puts you back again into email+password prompt in an infinite loop, without any error. If I then go back to the main page, if I was at the 2FA stage, I have to enter my 2FA code again to see the staff interface. If I was at the email+password stage, I can then proceed without logging in again. This effectively makes catalog exporting page inaccessible. I find the whole requirement of logging in again to export catalog pretty annoying on that note, which we do fairly regularly. Is there by any chance some way to disable that (which would probably mitigate this bug too)? I couldn't find anything. -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35601 --- Comment #1 from Katrin Fischer <katrin.fischer@bsz-bw.de> --- I cannot replicate that and have been using 2FA for a while without issue. Did you check the correct permission was set for the user? (export_catalog) I don't ever had to log in again to access that page. Is this about the feature you need to turn on that allows to export a databaes dump or just for the normal MARC export? -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35601 --- Comment #2 from M <schodkowy.omegi-0r@icloud.com> --- Actually previously it'd prompt to re-login only on database dump feature, but now it does when I just try to open the export page (possibly a change in 23.11 vs 23.05?). Disabling 2FA lets me access that page normally again though, after going through a single login.
Did you check the correct permission was set for the user?
I have superlibrarian permissions, so that shouldn't be an issue as far as I understand. I'm using the primary admin account that was created during Koha installation in this case -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35601 --- Comment #3 from M <schodkowy.omegi-0r@icloud.com> --- But yes, we have that database dumps feature enabled and are using it (both SQL and config variants are on) -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35601 --- Comment #4 from Katrin Fischer <katrin.fischer@bsz-bw.de> --- I think the database dump feature is the culprit here. Without it the page doesn't require an additional login. I believe we should indeed keep it for database dumps for security reasons, but allow the normal export to work normally. -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35601 David Nind <david@davidnind.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends on| |20476 CC| |david@davidnind.com Referenced Bugs: https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20476 [Bug 20476] Two factor authentication for the staff client - omnibus -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.
participants (1)
-
bugzilla-daemon@bugs.koha-community.org