I tried enabling 2fa for my forum account here. But the codes my authenticator gives me results in this forum software saying “unable to enable. each code is used for once” or something similar.
Anyone else getting such an error? Let me know so that I can narrow down the cause of the error to my own authenticator software.
Most 2FA errors I had in general were because of a wrong system time, so I’d start by checking if your system time is correct.
Same issue here. Time synchronized to NTP pool up to 0.15 s.
Another day, same error.
I checked my app with a couple of online testing services (found them by searching for ‘totp auth check’) - it works on all of them (and on real services too). Only here I got an error.
If it’s hopeless - maybe just disable such functionality in discourse engine settings?
Today I was finally able to set TOTP on this account. First attempt failed, then I found my clock was off for around 30 seconds. After clock synchronization TOTP setup went well.
I suspect server clock was not ideally synchronized in my previous attempts.
Proposed fix (client side): use GitHub - twekkel/htpdate: HTTP Time protocol
Use command htpdate -c -d -s support.delta.chat
It will synchronize time on your client with time from this server’s HTTP headers, even if server’s time is slightly off.
Also for diagnostic purposes it may be useful to compare time with other servers, like htpdate -c -d -q support.delta.chat www.ntp.org. If there is a difference in time between servers, you will see it.
Note: some HTTP servers do not send time in format required for htpdate.