Home Contact Buy
Sitemap Contact
Home Time Tracker Consulting Download Video Free Buy Sitemap Contact

Forum

Is TaskBar still broken?

Cannot Add New Clock or Change City Window 11

[SOLVED] Forgot Password -> Error 500

[SOLVED] Unable to send mail

installation problem : MDB2 Error: unknown error

the "actual" time of arrival & departure

work permit request

Time Tracker UPGRADE INSTRUCTIONS

News

11 May 2023
CVE-2023-32306 - Time-based blind SQL injection in reports
8 May 2023
CVE-2023-32066 - Stored XSS vulnerability in Week View
8 May 2023
CVE-2023-32308 - SQL injection vulnerability in Invoices
24 Feb 2023
Hide and show desktop clocks with a shortcut key
5 Feb 2023
World Clock desktop templates for forex
4 Feb 2023
World Clock desktop templates for GMT
6 Nov 2022
Charts for Favorite Reports
27 Oct 2022
Time Tracker 1.22 Released

Two Factor Authentication in Time Tracker

Two factor authentication (2FA) option in Time Tracker can be enabled on the avanced group settings page (Group tab - Advanced settings - Configure). Access to this page is limited to users who have the manage_advanced_settings access right (available in default Manager and Top manager roles).
Use Group - Advanced settings - Configure to enable two-step verification of user logins in Time Tracker
Two-factor authentication option in Time Tracker

When enabled, users are required to use 2FA (2-factor authentication) when logging in. This feature works via email. Here is how login procedure works:
  • First, user login and password is checked.
Regular login screen in Time Tracker asking for user login and passord
Regular login screen in Time Tracker

  • If login by password succeeds, Time Tracker checks if two-step authentication option is enabled in group.
  • If 2FA is enabled and if a user does not have the override_2fa access right, a random access code is generated and emailed to user. User is also redirected to Two Factor Authentication page, where they have to enter 2FA code along with their regular password.
2Two Factor Authentication screen in Time Tracker asking for user 2FA code and password
Two Factor Authentication screen in Time Tracker

For this workflow to work, Time Tracker must be configured for mail. Also, all users must have a valid email specified in their profile.

2FA Override for Top Managers

Multiple things can go wrong with 2-step auth:
  • Some users may not have their email specified.
  • Their email may be old or not working.
  • A Time Tracker server may be not configured or misconfigured with regards to email feature with the end result of mail not going anywhere.
As the means to mitigate the above risks and to provide an opportunity to fix problems, the Top manager role in Time Tracker includes the override_2fa access right. This allows a top manager to login without 2FA by just using their login and password even when 2FA is enabled in group.

Handling No Email Error

What happens when two-step authentication is enabled but a user does not have an associated email? In this case the "No email associated with this login" error is displayed on the Login screen for user as on the picture below. A top manager can fix this by logging in without 2FA and assign an email to user.
No email associated with this login error is displayed in a situation when user has no email specified. Time Tracker cannot email 2FA codes to such users.
No email associated with this login error in Time Tracker

Time Tracker User Guide

Home Download Video Free Buy Legal Sitemap Contact
Login
Hosting and content management by Anuko