Initial release

Author: markshust

.gitattributes

@@ -0,0 +1 @@
+/docs export-ignore

CHANGELOG.md

@@ -0,0 +1,10 @@
+# Changelog
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/)
+and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.html).
+
+## [1.0.0] - 2020-08-10
+
+### Added
+- Initial release.

LICENSE.md

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) [year] [fullname]
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

Plugin/BypassTwoFactorAuth.php

@@ -0,0 +1,34 @@
+<?php
+declare(strict_types=1);
+
+namespace MarkShust\DisableTwoFactorAuth\Plugin;
+
+use Magento\Framework\App\Config\ScopeConfigInterface;
+use Magento\TwoFactorAuth\Model\TfaSession;
+
+class BypassTwoFactorAuth
+{
+    /** @var ScopeConfigInterface */
+    private $scopeConfig;
+
+    public function __construct(
+        ScopeConfigInterface $scopeConfig
+    ) {
+        $this->scopeConfig = $scopeConfig;
+    }
+
+    /**
+     * If the TwoFactorAuth module Enable setting is set to false, always return true here so all requests bypass 2FA.
+     * Otherwise, return the original result.
+     *
+     * @param TfaSession $subject
+     * @param $result
+     * @return bool
+     */
+    public function afterIsGranted(TfaSession $subject, $result): bool
+    {
+        return !$this->scopeConfig->isSetFlag('twofactorauth/general/enable')
+            ? true
+            : $result;
+    }
+}

README.md

@@ -0,0 +1,56 @@
+<h1 align="center">MarkShust_DisableTwoFactorAuth</h1> 
+
+<div align="center">
+  <p>Provides the ability to disable two-factor authentication.</p>
+  <img src="https://img.shields.io/badge/magento-2.4-brightgreen.svg?logo=magento&longCache=true&style=flat-square" alt="Supported Magento Versions" />
+  <a href="https://packagist.org/packages/markshust/magento2-module-disabletwofactorauth" target="_blank"><img src="https://img.shields.io/packagist/v/markshust/magento2-module-disabletwofactorauth.svg?style=flat-square" alt="Latest Stable Version" /></a>
+  <a href="https://packagist.org/packages/markshust/magento2-module-disabletwofactorauth" target="_blank"><img src="https://poser.pugx.org/markshust/magento2-module-disabletwofactorauth/downloads" alt="Composer Downloads" /></a>
+  <a href="https://GitHub.com/Naereen/StrapDown.js/graphs/commit-activity" target="_blank"><img src="https://img.shields.io/badge/maintained%3F-yes-brightgreen.svg?style=flat-square" alt="Maintained - Yes" /></a>
+  <a href="https://opensource.org/licenses/MIT" target="_blank"><img src="https://img.shields.io/badge/license-MIT-blue.svg" /></a>
+</div>
+
+## Table of contents
+
+- [Summary](#summary)
+- [Installation](#installation)
+- [Usage](#usage)
+- [License](#license)
+
+## Summary
+
+With the release of Magento 2.4, two-factor authentication (also known as 2FA) became enabled by default, with no
+ability to disable it in either the admin or console. However, there are situations which may require 2FA to be disabled
+or temporarily turned off, such as within development or testing environments.
+
+This module adds the missing toggle to turn 2FA on or off from the admin. It does this by hooking into the core code in
+a very seamless manner, just as would be done if this toggle existed in the core code. Installing this module should not
+open up any security holes, as it just works off of a simple config toggle which if not present, falls back to default
+functionality. 
+ 
+![Demo](https://raw.githubusercontent.com/markshust/magento2-module-disabletwofactorauth/master/docs/demo.png)
+
+## Installation
+
+```
+composer require markshust/magento2-module-disabletwofactorauth
+bin/magento module:enable MarkShust_DisableTwoFactorAuth
+bin/magento setup:upgrade
+```
+
+## Usage
+
+This module keeps 2FA enabled by default. This is to prevent any unexpected side effects or security loopholes from
+being introduced during automated installation processes.
+
+After installing the module, one can disable 2FA by going to **Admin > Stores > Settings > Configuration >
+Security > 2FA**, and setting *Enable 2FA* to **No**.
+
+This setting can also be toggled to a 1 or 0 to respectively enable or disable 2FA from the command-line console:
+
+```
+bin/magento config:set twofactorauth/general/enable 0
+```
+
+## License
+
+[MIT](https://opensource.org/licenses/MIT)

composer.json

@@ -0,0 +1,21 @@
+{
+    "name": "markshust/magento2-module-disabletwofactorauth",
+    "description": "The DisableTwoFactorAuth module provides the ability to disable two-factor authentication.",
+    "require": {
+        "php": ">=7.3",
+        "magento/framework": ">=103"
+    },
+    "type": "magento2-module",
+    "version": "1.0.0",
+    "license": [
+        "MIT"
+    ],
+    "autoload": {
+        "files": [
+            "registration.php"
+        ],
+        "psr-4": {
+            "MarkShust\\DisableTwoFactorAuth\\": ""
+        }
+    }
+}

docs/demo.png

@@ -0,0 +1,25 @@
+<?xml version="1.0"?>
+<config xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+        xsi:noNamespaceSchemaLocation="urn:magento:module:Magento_Config:etc/system_file.xsd">
+    <system>
+        <section id="twofactorauth">
+            <group id="general">
+                <field id="enable" translate="label" type="select" sortOrder="1" showInDefault="1" canRestore="1">
+                    <label>Enable 2FA</label>
+                    <source_model>Magento\Config\Model\Config\Source\Yesno</source_model>
+                    <comment>Warning: Enabling 2FA will immediately prompt admin user for OTP code.</comment>
+                </field>
+                <field id="force_providers">
+                    <depends>
+                        <field id="enable">1</field>
+                    </depends>
+                </field>
+                <field id="webapi_notification_url">
+                    <depends>
+                        <field id="enable">1</field>
+                    </depends>
+                </field>
+            </group>
+        </section>
+    </system>
+</config>

etc/adminhtml/system.xml

@@ -0,0 +1,11 @@
+<?xml version="1.0"?>
+<config xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+        xsi:noNamespaceSchemaLocation="urn:magento:module:Magento_Store:etc/config.xsd">
+    <default>
+        <twofactorauth>
+            <general>
+                <enable>1</enable>
+            </general>
+        </twofactorauth>
+    </default>
+</config>

etc/config.xml

@@ -0,0 +1,6 @@
+<?xml version="1.0"?>
+<config xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="urn:magento:framework:ObjectManager/etc/config.xsd">
+    <type name="Magento\TwoFactorAuth\Model\TfaSession">
+        <plugin name="bypassTwoFactorAuth" type="MarkShust\DisableTwoFactorAuth\Plugin\BypassTwoFactorAuth"/>
+    </type>
+</config>

etc/di.xml

@@ -0,0 +1,8 @@
+<?xml version="1.0"?>
+<config xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="urn:magento:framework:Module/etc/module.xsd">
+    <module name="MarkShust_DisableTwoFactorAuth">
+        <sequence>
+            <module name="Magento_TwoFactorAuth"/>
+        </sequence>
+    </module>
+</config>

etc/module.xml

@@ -0,0 +1,8 @@
+<?php
+use Magento\Framework\Component\ComponentRegistrar;
+
+ComponentRegistrar::register(
+    ComponentRegistrar::MODULE,
+    'MarkShust_DisableTwoFactorAuth',
+    __DIR__
+);