I am writing to ask whether it is possible to configure "django.contrib.auth" so that it can implement Two Factor Authentication to step up login security.
The idea is that instead authenticating against just "username" and "password" one could add another field say "passcode" which would receive a dynamic token or PIN for additional security. I have tried to extend "User" by subclassing, while noting that there a couple of objections to this approach. I'm not a fan of monkey- patching and I am not quite sure adding fields using the documented 'ForeignKey' extension strategy will do the trick. In any case, when I try to login as admin after all the grunt work of subclassing, Python spits out all sorts of exceptions including the nefarious *None Type* -- 'None Type' object has no attribute 'DoesNotExist'. Finally, assuming we can effectively implement 2 Factor Authentication, how would we ensure that the admin adapts to 2FA i.e. that its login form contains an additional "passcode" field for user token/PIN input and verification. I am new to Django, but not to Python so any assistance in this matter will be highly appreciated. Hacking this is like trying to resolve a rubix cube with one hand. So help me out here if you can. Patrick -- You received this message because you are subscribed to the Google Groups "Django developers" group. To post to this group, send email to django-developers@googlegroups.com. To unsubscribe from this group, send email to django-developers+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/django-developers?hl=en.
