NEW: Login with TREZOR for Joomla

in #joomla7 years ago


Hi guys,


Today we have a new exciting Joomla plugin!

Login with TREZOR is a Joomla plugin that provides secure user authentication via a password-less login using the TREZOR device, and enables you to login securely with a click of a button. The TREZOR device holds securely secret keys and uses them to sign messages without actually ever exposing these secrets. 

Thus when using Login with TREZOR, no user password is needed and no reusable secret can be ever captured by keylogger or other malware. 


How it works


After you install and configure the Login with TREZOR plugins in your website, the following button will be displayed: 


When user clicks on the button, the following dialog window will popup:



At this point, the user must connect his/her TREZOR device. When connected, the TREZOR device will display the following confirmation screen: 



After the user confirms the action, the device will return a structure with signed login information. If a paired account is found in the database, the user will be automatically logged in. 


Installation


  1.  Login to Joomla administrator control panel.
  2.  Navigate to Extensions > Manage > Install.
  3.  Install the package pkg_trezorlogin.zip. This will automatically install all required plugins.
  4.  Alternatively, you can install the system and user plugins separately.
  5.  Navigate to Extensions > Plugins and enable the plugins: 
    1. System - Login with TREZOR
    2. User - Login with TREZOR


System Plugin


The system plugin is responsible for displaying the login button as well as authenticating the user. 


Back-end Login: Enables "Login with TREZOR" in administrator login form. 



Front-end Login: Enter the following shortcode anywhere in your website (article text, custom html module, php file) to display the TREZOR login button. 

 {trezorlogin} 



Site Logo: The site logo will be displayed in the TREZOR popup window. Recommended size: 48x48px.

Login Redirection Page: Select the page the user will be redirected to after a successfull front-end login.

Hide Footer: The footer displays a link back to the trezor.io website. 


User Plugin


The user plugin is responsible for pairing a user account with a TREZOR device. 


Enable in Registration Form: Enables account pairing in user registration form.

Enable in Profile Edit Form: Enables account pairing in user profile edit form. 


Account Pairing


Before a user can login with his/her TREZOR device, he/she must first pair it with an existing user account. After the pairing, the user doesn’t have to expose his/her orginal credentials each time he/she authenticates. 


Plugin Override


The standard output of the login button can be overridden by adding code to the html directory of your template.

To override the output of the Login with TREZOR - System plugin: 

  • Create a folder named  
templates/your_template/html/plg_system_trezorlogin/
  •  Copy the original layout file 
plugins/system/trezorlogin/tmpl/default.php

to the new override folder 

templates/your_template/html/plg_system_trezorlogin/default.php


Now you can edit the layout file to override the plugin output.

Links



Enjoy! :)


#plugin #trezor #bitcoin
7 years ago in #joomla by
$0.36
  • Past Payouts $0.36
  • - Author $0.28
  • - Curators $0.07
3 votes
Reply 1
Sort:  
  • Trending
    • [-]
     5 years ago 

    Congratulations @wordpress-tips! You received a personal award!

    Happy Birthday! - You are on the Steem blockchain for 3 years!

    You can view your badges on your Steem Board and compare to others on the Steem Ranking

    Vote for @Steemitboard as a witness to get one more award and increased upvotes!
    $0.00
      Reply