Awesome plugin, I have a feature request

  • Resolved ianarmstrong

    (@ianarmstrong)


    11 years, 2 months ago

    What a great little plugin, thanks!

    I would love a feature that would allow me to require LaunchKey usage based on user role. For example, I’d like to force site admins to set up a LaunchKey then, once that’s done, no longer allow password access to the site for that user level. I’d like to be able to specify that for others as well.

    In case a phone were to be lost, we would need to set up email confirmation to lock out the phone until a new link could be established. As for worries about “what happens if I am the only admin and I lose my phone” the solution there is simple: disable the plugin by renaming its folder via FTP; problem solved. You’d just need to error trap the fact the plugin had been turned off and on again then reconfirm the account.

    Anyhow, TL;DR… any way I can remove classic typed password authentication altogether for editors an up is welcome. It would eliminate the most common attack vector for bots.

    https://www.ads-software.com/plugins/launchkey/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author launchkey

    (@launchkey)

    Thanks for the feedback! The plugin currently allows a user to remove one’s password if you look at the “Your Profile” section while logged in. The plugin does not currently allow an admin to set a policy per role, but this is something we can certainly look into. If your device is lost we have also left the “reset password” functionality alone in WordPress so that is another way to add a temporary password to get back in if you are locked out. We will also allow the disabling of that functionality in a future release if you really want to lock out passwords.

    Thread Starter ianarmstrong

    (@ianarmstrong)

    Yup, I see that it can be set on an individual basis. Being able to shift to a role-based setting would really help me lock down a site though. Granted, there are still plenty of back doors in a WP site that isn’t maintained but deleting the front door eliminates 99 out of 100 would be hackers.

    Thanks for the quick response!

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Awesome plugin, I have a feature request’ is closed to new replies.