Two-factor authentication
Brivacia can protect the admin account with optional two-factor authentication.
Brivacia uses standard TOTP codes, compatible with apps such as Google Authenticator, 1Password, Proton Pass, Aegis, Ente Auth, and other TOTP-compatible apps.
No external API is used.
Enable 2FA
- Open Brivacia settings.
- Go to Two-factor authentication.
- Click Set up two-factor authentication.
- Scan the QR code with your authentication app.
- If your app cannot scan QR codes, click Show manual key and copy the TOTP key.
- Enter the current 6-digit code shown by your app.
- Click Enable 2FA.
- Save the backup codes displayed by Brivacia.
Backup codes are shown only once. Keep them somewhere safe.
Use a backup code
If you lose access to your authentication app, you can use a backup code instead of the 6-digit code.
Each backup code can only be used once.
After signing in with a backup code, you should disable and re-enable 2FA to generate a new TOTP setup and new backup codes.
Disable 2FA from Brivacia
If you can still access the admin account:
- Sign in to Brivacia.
- Open settings.
- Go to Two-factor authentication.
- Click Disable 2FA.
- Confirm the action.
The admin account will then use only the password.
I lost my phone and my backup codes
If you no longer have access to your authentication app or backup codes, 2FA can be disabled manually from the configuration file.
This requires access to the server files.
- Open:
data/settings.json
-
Find the
two_factorblock in the admin configuration. -
Replace it with:
"two_factor": {
"enabled": false,
"secret": "",
"backup_codes": [],
"last_counter": 0
}
You can also remove the two_factor block entirely.
Brivacia treats 2FA as disabled if enabled is false, if the secret is empty, or if the two_factor block does not exist.
After editing the file, sign in again with the admin password.
Important
The QR code and manual key can be used to configure the 2FA code generator. Do not share them and do not store them in a public location.
Backup codes should be stored separately from your authentication app.
Do you find this project useful? You can support its development using the buttons in the page footer.
breat.fr