Promotions

  • Advanced Professional Gantt Dolibarr

    Would you like to see your project evolve in an efficient and structured way? The Gantt Professional Advanced Module allows you to manage all your projects in one place, without the need to use Gantt Project. We believe that you can effectively manage your projects with the right tools in place, and the Gantt Professional Advanced Module is one of them.

    300.00 €  (600€)
  • RecurringEvent

    RecurringEvent manages event recurrence within Dolibarr, facilitating the automatic generation of recurring event series.

    75.00 €  (150€)

New products

  • RecurringEvent

    RecurringEvent manages event recurrence within Dolibarr, facilitating the automatic generation of recurring event series.

    75.00 €
  • IBAN-FACTUR-X

    IBAN-FACTURX – Iban account for Dolibarr billing, Professional IBAN integrated with Dolibarr, featuring full synchronization for automated invoice payments and native connectivity with Partner Dematerialization Platforms (PDPs) for e-invoicing.

    FREE

MFA

mp20887d20260427122016

New

Multi-Factor Authentication module using TOTP-compatible authenticator applications such as Google Authenticator and Microsoft Authenticator.

FREE

  • Author CONCORDE De Conseil
  • Module version 1.0
  • Release date 04/27/2026
  • Access to download and updates Lifetime access
  • Compatibility Dolibarr V20+   -   PHP7.4 - 8.3
  • Last update 05/05/2026 04:32 PM

More info...

Multi-Factor Authentication Module for Dolibarr

Summary

Initial implementation and documentation of a TOTP-based MFA module for Dolibarr ERP & CRM.

Features Added

  • TOTP secret generation compatible with authenticator apps (Google, Microsoft, Authy, FreeOTP)
  • QR code provisioning for easy user enrollment
  • MFA challenge on login for enabled users
  • User card interface to setup, verify, and activate MFA
  • Admin interface with failed-attempt history and lock reset actions
  • CSRF-protected setup and state-change actions
  • Lockout handling after repeated invalid MFA codes
  • Persistent attempt tracking (login & setup failures) with source IP logging

Documentation

  • README.md (English)
  • README.fr.md (French)
  • README.ar.md (Arabic)
  • ChangeLog.md
  • COPYING (GPLv3 license)

Translations Added

  • English (en_US)
  • French (fr_FR)
  • Arabic (ar_SA)

Technical Details

  • PHP 100%
  • Module directory: htdocs/custom/mfa
  • SQL tables for attempt history
  • Compatible with Dolibarr core authentication flow

Credits

  • Copyright (C) 2026 CONCORDE de Conseil
  • Developer: Ali WERGHEMMI
  • Contact: contact@concorde.tn
  • Website: https://www.concorde.tn

Purpose

Provide an extra security layer for Dolibarr users by requiring a time-based one-time password (TOTP) after successful password authentication.




If you think this module is a fork of another one (published after the first one) or violates some terms or conditions of use (for users or vendors), you can make a report at dolistore@dolibarr.org