github-starred/gitea
2
0
Fork 0
mirror of https://github.com/go-gitea/gitea.git synced 2026-03-09 12:46:42 -05:00
Code Issues 2.6k Packages Projects Releases 100 Wiki Activity

U2F/2FA, how to enable it and enroll myself? #3308

New Issue
Closed
opened 2025-11-02 05:07:30 -06:00 by GiteaMirror · 2 comments
GiteaMirror commented 2025-11-02 05:07:30 -06:00
Owner
Copy Link

Originally created by @markg85 on GitHub (May 9, 2019).

Hi,

The documentation on this is really sparse!
I can only find some 'hint' that it even is possible in Gitea, but any documentation on how to enable it seems to be either completely missing or named so weirdly that you can't find it.

Some examples:
https://docs.gitea.io/en-us/authentication/ (makes no mention of it, at all!)
https://docs.gitea.io/en-us/ (mentions it in the features, but that's all)
https://github.com/go-gitea/gitea/blob/master/custom/conf/app.ini.sample (here calls it U2F but no documentation on how to use it)
In the user settings under security this is mentioned: "Your account must be enrolled in two-factor authentication to use security keys." but absolutely no way of figuring out how to enroll a user to use that.

I don't want to criticize Gitea, it's a marvelous project :)
But having some documentation on how to use this feature would be really welcome! I haven't figured it out yet.

Best regards,
Mark

Edit
Apparently on the security settings page (fur the user) there is a big ass button to enroll in 2FA right in the first section. I apparantly just didn't catch that at all at first. I only noticed it when watching this video about the feature: https://www.youtube.com/watch?v=sA4Id3Sc72M

Still leaves the above as valid, just not "as bad" as i thought it was.

Originally created by @markg85 on GitHub (May 9, 2019). Hi, The documentation on this is _really_ sparse! I can only find some 'hint' that it even is possible in Gitea, but any documentation on how to enable it seems to be either completely missing or named so weirdly that you can't find it. Some examples: https://docs.gitea.io/en-us/authentication/ (makes no mention of it, at all!) https://docs.gitea.io/en-us/ (mentions it in the features, but that's all) https://github.com/go-gitea/gitea/blob/master/custom/conf/app.ini.sample (here calls it U2F but no documentation on how to use it) In the user settings under security this is mentioned: "Your account must be enrolled in two-factor authentication to use security keys." but absolutely no way of figuring out how to enroll a user to use that. I don't want to criticize Gitea, it's a marvelous project :) But having some documentation on how to use this feature would be really welcome! I haven't figured it out yet. Best regards, Mark **Edit** Apparently on the security settings page (fur the user) there is a big ass button to enroll in 2FA right in the first section. I apparantly just didn't catch that at all at first. I only noticed it when watching this video about the feature: https://www.youtube.com/watch?v=sA4Id3Sc72M Still leaves the above as valid, just not "as bad" as i thought it was.
GiteaMirror added the issue/confirmedtype/docs labels 2025-11-02 05:07:30 -06:00
GiteaMirror commented 2025-11-02 05:07:32 -06:00
Author
Owner
Copy Link

@arren-ru commented on GitHub (May 10, 2019):

The secret it that you don't really need anything to do with config to enable U2F. All default settings works.
The only condition is that you must have https between browser and server. U2F works only in this case.
Than go to settings/security and enable OTP, after that U2F become available.
OTP is required for avoid of self-locking out of your account in case of damaged or loose key (imho).

@arren-ru commented on GitHub (May 10, 2019): The secret it that you don't really need anything to do with config to enable U2F. All default settings works. The only condition is that you must have `https` between browser and server. U2F works only in this case. Than go to `settings/security` and enable OTP, after that U2F become available. OTP is required for avoid of self-locking out of your account in case of damaged or loose key (imho).
GiteaMirror commented 2025-11-02 05:07:32 -06:00
Author
Owner
Copy Link

@stale[bot] commented on GitHub (Jul 10, 2019):

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs during the next 2 weeks. Thank you for your contributions.

@stale[bot] commented on GitHub (Jul 10, 2019): This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs during the next 2 weeks. Thank you for your contributions.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
$20
$250
$50
$500
backport/done
💎 Bounty
docs-update-needed
good first issue
hacktoberfest
issue/bounty
issue/confirmed
issue/critical
issue/duplicate
issue/needs-feedback
issue/not-a-bug
issue/regression
issue/stale
issue/workaround
lgtm/need 2
modifies/api
modifies/translation
outdated/backport/v1.18
outdated/theme/markdown
outdated/theme/timetracker
performance/bigrepo
performance/cpu
performance/memory
performance/speed
pr/breaking
proposal/accepted
proposal/rejected
pr/wip
pull-request
Mirrored from GitHub Pull Request
 reviewed/wontfix
💰 Rewarded
skip-changelog
status/blocked
topic/accessibility
topic/api
topic/authentication
topic/build
topic/code-linting
topic/commit-signing
topic/content-rendering
topic/deployment
topic/distribution
topic/federation
topic/gitea-actions
topic/issues
topic/lfs
topic/mobile
topic/moderation
topic/packages
topic/pr
topic/projects
topic/repo
topic/repo-migration
topic/security
topic/theme
topic/ui
topic/ui-interaction
topic/ux
topic/webhooks
topic/wiki
type/bug
type/deprecation
type/docs
type/enhancement
type/feature
type/miscellaneous
type/proposal
type/question
type/refactoring
type/summary
type/testing
type/upstream
No Label issue/confirmed type/docs
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/gitea#3308
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?