I have enabled plugin "Two Factor Authentication - Google Authenticator" for my site, and have configured it for my account - all appears to have gone over well, exactly as outlined in instructions.
Login page also now prompts for a secret key as expected - however, this field doesn't appear to be required in order to log in.
If I leave the secret key field blank - I can login with no issues.
I put in random info in the secret key field, I can login with no issues, though I do get a message: "You need to enable two factor authentication in your user profile to use the secret code field."
After logging in, I've checked on my account and 2FA does still appear to be configured.
I am wondering if I am missing something here.
- Joomla! Version: Joomla! 3.9.9 Stable
- Joomla! Platform Version: Joomla Platform 13.1.0 Stable
- PHP Version: 7.1.30
- Web Server: Apache