miniOrange

Hi,

This looks like a false positive or malware pointed for some other files for your system.

Our plugin is scanned by our security team plus WordPress security team, and we can guarantee that there is no malware.

The source code is also available publicly, so anyone can scan the plugin with any antivirus and we are confident that there won’t be any security issue.

I request you to reverify ImunifyAV report and claims you have made. I can arrange a call with miniOrange security team and provide you necessary security reports if you want.

Please write us at info@xecurify.com to connect with us and resolve this.

@pabelpm waiting for an update from you.

We support login only with the wallets that have a NFT as well as login only to the specific NFT collection contract address.

Hi,

Yes, this plugin can restrict login only with the wallets that have a NFT.

Do you want us to arrange a demo for the same?

Please share a support request from plugin support form so that we can send you a demo link.

Hi @thenazman,

We haven’t heard back from you.

Can you please let me know if you were able to purchase SMS transactions in our Google Authenticator plugin?

After purchasing the SMS transactions make sure to SYNC your SMS transactions from the 2fa profile section.

You can use seamless mobile verification / two-factor authentication after this.

If you have any other problems with the two-factor configuration or MFA setup then please let us know.

Thank you,
miniOrange team

Hello @thenazman,

In addition to the above reply please provide the screenshot of the profile section of the Google authenticator plugin dashboard.

If you have any other problems with the two-factor configuration or MFA setup then please let us know.
You can check the remaining SMS transactions here and set up your 2fa.

Thank you,
miniOrange team

Hello @thenazman,

Thank you for reaching out to us and sorry for the inconvenience.

Can you please let us know your miniOrange 2fa account? So that we can check it on our end.

For the time being, you should remove the account from the account tab and attempt logging in again. This will allow you to sync the SMS on your dashboard.

Also, our developer can go on a screen share meeting to debug the issue for you. Can you please raise a support ticket from the plugin or reach out to us from our Website for the call?

Thank you,`

Hello @freelancelab,

Thanks for your reply.

Could you please reach out to us using the Need Help icon of the plugin so that we can help you with your query?

Hello @yrhs320070,

Thanks for reaching out to us.

We do have firebase gateway integration as a separate premium feature.
The firebase gateway implementation is form-specific.

Could you please let me know on which form you wish to enable OTP verification with firebase?

You can reach out to us on our support by clicking on the Need Help icon on the bottom right of the plugin so that we can help you with your query.

Feel free to reach out to us.

Hello @dhanashreep123,

Thanks for reaching out to us.

It seems you have modified the template of the OTP message for Indian users.
For the Indian traffic, according to new DLT registration rules, each sender id and SMS template must be registered on the DLT platform with a unique account and it should have the KYC of the owner.

You can use any one of the SMS templates listed in the guide.
Also, you can register your own SMS template on the DLT platform. Please follow our guide to register your own SMS template.

Feel free to reach out to us.

Hello @touficmamdouh,

Thanks for reaching out to us.

We do support translation using the WPML translate plugin texts.
Could you please let me know which text you wish to translate?

Please let me know how you would like to connect so that we can check the issue.

You can reach out to us on our support by clicking on the Need Help icon on the bottom right of the plugin so that we can help you with your query.

Feel free to reach out to us.

Hi @yoursql719,

Thanks for reaching out.

Yes, we will surely publish the document so you and other users using our plugin will have help in this regard.

Regarding your question, The Basic Auth uses user credentials which serves the purpose of both Authentications as well as authorization.
The validation of the user credentials fulfils the need for user authentication that the request has been made from a valid user and the Authorization servers the purpose to only allow to view the data or perform any operation for what he is allowed to do so based on his capabilities.

Example – If someone tries to access the WordPress posts GET API, then if the credentials are of subscriber user, then only he will be allowed to access the posts which only subscriber can view. Similarly, if the subscriber user tries to create the posts via API, then as per WordPress guidelines, only Admins and Editors are allowed to create/update posts, so that subscriber user will receive the error from the WordPress side.

So, basically, it depends upon your requirements what type of operation you want to perform via WordPress API call hence there won’t be any risk. Also, if you have concerns about using a user’s credentials, then you can opt for Basic Auth with Client credentials method or the most secure OAuth 2.0 Auth with Client Credentials grant. You can check all the auth methods in detail from https://plugins.miniorange.com/wordpress-rest-api-authentication#rest-api-methods

To get more information and discuss your requirements in detail with our technical engineer, please feel free to drop out an email to apisupport@xecurify.com.

Thanks,
Team miniOrange

• This reply was modified 2 years, 12 months ago by miniOrange.
• This reply was modified 2 years, 12 months ago by miniOrange.

Hi @nathpw,

Thanks for reaching out.

In the current version of the free plan of the plugin, we don’t provide that functionality but we will have it covered with the next release of the plugin which will be very soon.

In case, if you have the updated plugin with this feature now and also wants to discuss the requirements in detail, then you can email us at apisupport@xecurify.com so we can provide you with the updated plugin.

Thanks,
Team miniOrange

Hello @packaquestion,

As we have not received any response from your side, we will be going ahead and marking this thread as resolved.

You can always reach out to us in the future whenever you have any doubts or concerns.
You can also find us under the Support section of the WordPress miniOrange OTP Plugin Details Tab.

We are always here to help you.

Hello @firestash,

As we have not received any response from your side, we will be going ahead and marking this thread as resolved.

You can always reach out to us in the future whenever you have any doubts or concerns.
You can also find us under the Support section of the WordPress miniOrange OTP Plugin Details Tab.

We are always here to help you.

Hello @freelancelab,

Thanks for your reply.

Yes, the translation of the text “Login with OTP” is supported with the plugin.
Could you please confirm if you have added the “Login with OTP” string and translated it into the Loco plugin?

You can reach out to us on our support by clicking on the Need Help icon on the bottom right of the plugin so that we can help you with your query.