Skip to content

Multi-factor Authentication using a Public PGP key

License

Notifications You must be signed in to change notification settings

misterG13/PGP-mfa

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

31 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

PGPmfa() a PHP Class for PGP

Multi-factor Authentication using a Public PGP key for web based applications

Multi-factor Authentication with PGP

Second form (or main form) of authentication to access highly secure web applications.

A user generates there own PGP key pairs, on a local machine. The Public Key portion of the pair will be required during user sign up. This eliminates the need to remember several passwords and removes liability from a web application having to store secure credentials.

This PHP Class interacts with the PHP module/extension known as GnuPG (GNU Privacy Guard). This software allows the web host to import, encrypt/decrypt and test the validity of PGP keys.

Requirements

Installation

  • Clone Git
  • On a local machine, not the host system:
    • Generate a test key pair with PGP (private + public keys)
  • Replace contents of '/assets/publicPGPkey.txt' with your previously generated, Public key
  • Open 'index.php' in your web browser and follow the prompts
    • On success; you will see an encrypted message
    • Copy this message to your local machine with the Private key
    • Decrypt this message and copy the code inside
    • Paste the code as a password to continue the log in process
  • OR
  • Copy 'PGPmfa.php' from '/php/' folder and reference the class as needed in your own application. The inline documentation is always growing in clarity.

About

Multi-factor Authentication using a Public PGP key

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published