I think Noggin should do like most services and require you to enter a 6 digit OTP code before it finishes enrolling your OTP token. Somehow I got enrolled for an OTP token without ever scanning the QR code, and now I'm locked out from adding an OTP token because I can't enter a 6 digit code from my current one.
Not sure if that workflow is supported by freeIPA -- that will have to be investigated further.
In the meantime, have filed a PR over at noggin to add an extra confirmation step to the dialog that shows the confirmation link / QR code. This makes it harder to dismiss this dialog accidentially.
https://github.com/fedora-infra/noggin/pull/549
Metadata Update from @humaton: - Issue tagged with: authentication
I think @smooge fixed @nb's issue here and that PR hopefully will prevent it. ;) thanks everyone!
Metadata Update from @kevin: - Issue close_status updated to: Upstream - Issue status updated to: Closed (was: Open)
Log in to comment on this ticket.