Multi-Factor Authentication Module for Dolibarr

Summary

Initial implementation and documentation of a TOTP-based MFA module for Dolibarr ERP & CRM.

Features Added

• TOTP secret generation compatible with authenticator apps (Google, Microsoft, Authy, FreeOTP)
• QR code provisioning for easy user enrollment
• MFA challenge on login for enabled users
• User card interface to setup, verify, and activate MFA
• Admin interface with failed-attempt history and lock reset actions
• CSRF-protected setup and state-change actions
• Lockout handling after repeated invalid MFA codes
• Persistent attempt tracking (login & setup failures) with source IP logging

Documentation

• README.md (English)
• README.fr.md (French)
• README.ar.md (Arabic)
• ChangeLog.md
• COPYING (GPLv3 license)

Translations Added

• English (en_US)
• French (fr_FR)
• Arabic (ar_SA)

Technical Details

• PHP 100%
• Module directory: htdocs/custom/mfa
• SQL tables for attempt history
• Compatible with Dolibarr core authentication flow

Credits

• Copyright (C) 2026 CONCORDE de Conseil
• Developer: Ali WERGHEMMI
• Contact: contact@concorde.tn
• Website: https://www.concorde.tn

Purpose

Provide an extra security layer for Dolibarr users by requiring a time-based one-time password (TOTP) after successful password authentication.