En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

MFA trouble, QR or TOTP not accepted

0

Which "code" is invalid: the QR or the TOTP?
I have generated QR codes which both "Duo Mobile" and "Google Authenticator" find acceptable (and that took a while)
but when I enter the 6-digit response I get
"Invalid code provided, please request a code again."
Entering a second POTP doesn't help, nor does starting over with a new QR (after deleting account).
The QR comes from

qr_code = "otpauth://totp/AWSCognito:" + user.username + "?secret=" + code + "&issuer=Cognito";

The name and password pass cognito check.
Cognito configs:
Allowed flows: Authorization code grant, Implicit grant
Allowed scopes: phone, openid

Edited by: segmented on Jul 6, 2020 6:59 PM

Sujets
Sécurité, identité et conformité
Balises
Amazon Cognito
Langue
English
segmented
demandé il y a 4 ans840 vues
1 réponse
0

It was the QR code: The problem was resolved by getting the correct user (and hence user.name) in play.

segmented
répondu il y a 4 ans

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents