Skip to content
codeblick

Two-Factor Authentication (Customer & Admin)

Protect your customers’ accounts with optional two-factor authentication (2FA). This plugin enables secure access to customer accounts by requiring authentication with a second device, preventing unauthorized access.

Admin Login

Inspired by the security standards of major platforms like Amazon and Google, 2FA provides your customers with additional protection for their sensitive data and ensures greater security in your shop. Easy to use, this feature guarantees maximum security and trust.

Open Plugin in the Shopware 6 Store

Getting Started

Installation

Composer

We generally recommend installing Shopware plugins via Composer. Your Shopware installation must be authenticated once. You can find a guide for this in the Shopware documentation. If you have completed this step and purchased our plugin through the store, you can install it using the following commands:

  1. Add the plugin to your Composer dependencies.

    Terminal window
    composer require store.shopware.com/cobtwofactor

  2. Refresh the plugin list.

    Terminal window
    bin/console plugin:refresh

  3. Install and activate the plugin in one step.

    Terminal window
    bin/console plugin:install --activate CobTwoFactor

Shopware Administration

Alternatively, you can install and activate the plugin via the usual method under the My Extensions menu item.

My Extensions

Configuration

Once the plugin is installed and activated, you can customize it via the Configure option within the extension manager. In earlier Shopware versions, this option is hidden in the context menu ....

Plugin Configuration

ConfigurationDescription
Show 2FA Configuration in User ProfileThis plugin works both in the frontend for customers and in the administration. Here you can disable the function for customers.

Guide

Administration

Your users in the administration can enable two-factor authentication in their profile.

  1. Open your profile.

    Click on your name in the bottom left and then on the menu item Your Profile.

    Admin Profile

  2. Enable Two-Factor Authentication

    Click on Enable Now and scan the QR code with a suitable smartphone app, such as Google Authenticator. This app will display a 6-digit code. Enter this code in the text field and confirm with Activate.

    Admin Profile Two-Factor Configuration

  3. Confirm changes with your password

    You will be asked for your password. Enter the correct password to save your changes.

    Admin Profile Confirm Changes

From now on, you will be prompted for your two-factor code when logging into the administration.

Storefront

The process is very similar to the administration. However, the settings are located in the customer’s personal profile. When logging in, the customer is asked whether they want to remember their device for the next 30 days. If selected, they will not be prompted for a two-factor code during this period.

Storefront Two-Factor Configuration

Deactivating 2FA for Users

For Administrators

For security reasons, 2FA for administrators can only be reset via the Shopware console. Connect to the server and execute the following command, replacing {username} with the appropriate value.

Terminal window
bin/console cob:two-factor:remove-totp-from-user {username}

For End Customers

For end customers, you can reset 2FA in the administration panel. Open the customer profile in the admin interface and clear the 2FA Secret custom field.

Reset 2FA