Title: OOSOFT 2FA Security
Author: oosoft
Published: <strong>એપ્રિલ 28, 2026</strong>
Last modified: મે 15, 2026

---

પ્લગીન શોધો

![](https://ps.w.org/oosoft-2fa-security/assets/icon-256x256.png?rev=3518666)

# OOSOFT 2FA Security

 [oosoft](https://profiles.wordpress.org/oosoft/) દ્વારા

[ડાઉનલોડ](https://downloads.wordpress.org/plugin/oosoft-2fa-security.zip)

 * [વિગતો](https://gu.wordpress.org/plugins/oosoft-2fa-security/#description)
 * [સમીક્ષાઓ](https://gu.wordpress.org/plugins/oosoft-2fa-security/#reviews)
 *  [સ્થાપન](https://gu.wordpress.org/plugins/oosoft-2fa-security/#installation)
 * [ડેવલપમેન્ટ](https://gu.wordpress.org/plugins/oosoft-2fa-security/#developers)

 [સપોર્ટ](https://wordpress.org/support/plugin/oosoft-2fa-security/)

## વર્ણન

OOSOFT 2FA Security adds robust two-factor authentication to your WordPress site.
Protect every login with a second verification step using a TOTP authenticator app(
Google Authenticator, Authy, etc.) or a one-time code sent to your email address.

**Key Features:**

 * **TOTP Authenticator App** — compatible with Google Authenticator, Authy, Microsoft
   Authenticator, and any RFC 6238-compliant app.
 * **Email OTP** — sends a time-limited one-time code to the user’s registered email
   address.
 * **Backup Codes** — generate single-use recovery codes so users are never locked
   out.
 * **Role-Based Enforcement** — require 2FA for specific roles (e.g. administrators)
   while leaving it optional for others.
 * **Rate Limiting** — brute-force protection with configurable attempt limits and
   lockout periods.
 * **Security Logs** — detailed event logging with filterable admin view and automatic
   pruning.
 * **Encrypted Secret Storage** — TOTP secrets are encrypted at rest using libsodium(
   preferred) or AES-256-GCM/CBC via OpenSSL.
 * **HKDF Key Derivation** — encryption keys are derived from your WordPress secret
   keys; no raw key material is stored.

## સ્થાપન

 1. Upload the `oosoft-2fa-security` folder to the `/wp-content/plugins/` directory.
 2. Activate the plugin through the **Plugins** menu in WordPress.
 3. Go to **Settings > 2FA Security** to configure enforcement rules and options.
 4. Users can set up their preferred 2FA method from their **Profile** page.

## એફએક્યુ (FAQ)

### Which authenticator apps are supported?

Any app that supports the TOTP standard (RFC 6238), including Google Authenticator,
Authy, Microsoft Authenticator, and 1Password.

### What happens if a user loses their authenticator app?

Users can log in with one of their backup codes. Administrators can also disable
2FA for a user from the Users list.

### Is TOTP secret storage secure?

Yes. Secrets are encrypted with AES-256 (libsodium secretbox preferred, OpenSSL 
AES-256-GCM/CBC as fallback) before being stored in the database. Encryption keys
are derived from your site’s unique WordPress secret keys via HKDF-SHA256.

### Does this plugin work with WooCommerce or custom login forms?

The plugin intercepts WordPress’s core authentication pipeline, so it works with
any theme or plugin that uses `wp_signon()` or the standard login form.

## સમીક્ષાઓ

આ પ્લગઇન માટે કોઈ સમીક્ષાઓ નથી.

## ફાળો આપનાર & ડેવલપર્સ

આ ઓપન સોર્સ સોફ્ટવેર છે. નીચેના લોકો એ આ પ્લગિન માટે ફાળો આપ્યો છે.

ફાળો આપનારા

 *   [ oosoft ](https://profiles.wordpress.org/oosoft/)
 *   [ OOSOFT ](https://profiles.wordpress.org/mudivillanv/)

[“OOSOFT 2FA Security” ને તમારી ભાષામાં અનુવાદ કરો.](https://translate.wordpress.org/projects/wp-plugins/oosoft-2fa-security)

### વિકાસમાં રસ ધરાવો છો?

[કોડ બ્રાઉઝ કરો](https://plugins.trac.wordpress.org/browser/oosoft-2fa-security/),
જોવો[અસ્વીએન રેપોઝિટરીમાંથી](https://plugins.svn.wordpress.org/oosoft-2fa-security/),
અથવા સબ્સ્ક્રાઇબ કરો[ડેવલપમેન્ટ](https://plugins.trac.wordpress.org/log/oosoft-2fa-security/)
દ્વારા[આરઅસઅસ](https://plugins.trac.wordpress.org/log/oosoft-2fa-security/?limit=100&mode=stop_on_copy&format=rss).

## ચેન્જલૉગ

#### 1.0.2

 * Improved escaping and security hardening throughout.
 * Removed deprecated load_plugin_textdomain() call (WordPress 4.6+ auto-loads translations).
 * Added HKDF key derivation fallback warning when WordPress secret keys are not
   configured.

#### 1.0.1

 * Fixed QR code scanning compatibility with major authenticator apps.
 * Switched to proven qrcodejs library for QR generation.

#### 1.0.0

 * Initial release.

## મેટા

 *  વર્ઝન **1.0.2**
 *  છેલ્લી અપડેટ: **2 મહિના પહેલા**
 *  સક્રિય સ્થાપનો: **10 કરતા ઓછા**
 *  વર્ડપ્રેસ વર્ઝન ** 6.0 અથવા ઉચ્ચતર **
 *  **6.9.4** સુધી પરીક્ષણ કર્યું
 *  PHP સંસ્કરણ ** 8.0 અથવા ઉચ્ચતર **
 *  ભાષા
 * [English (US)](https://wordpress.org/plugins/oosoft-2fa-security/)
 * ટૅગ્સ:
 * [2FA](https://gu.wordpress.org/plugins/tags/2fa/)[otp](https://gu.wordpress.org/plugins/tags/otp/)
   [security](https://gu.wordpress.org/plugins/tags/security/)[totp](https://gu.wordpress.org/plugins/tags/totp/)
   [two factor authentication](https://gu.wordpress.org/plugins/tags/two-factor-authentication/)
 *  [વિગતવાર દૃશ્ય](https://gu.wordpress.org/plugins/oosoft-2fa-security/advanced/)

## પૉઇન્ટ્સ

હજુ સુધી કોઈ સમીક્ષા સબમિટ કરવામાં આવી નથી.

[Your review](https://wordpress.org/support/plugin/oosoft-2fa-security/reviews/#new-post)

[બધા  સમીક્ષાઓ જુઓ](https://wordpress.org/support/plugin/oosoft-2fa-security/reviews/)

## ફાળો આપનારા

 *   [ oosoft ](https://profiles.wordpress.org/oosoft/)
 *   [ OOSOFT ](https://profiles.wordpress.org/mudivillanv/)

## સપોર્ટ

કંઈક કહેવું છે? મદદ જોઈએ છે?

 [આધાર ફોરમ જુઓ](https://wordpress.org/support/plugin/oosoft-2fa-security/)

## દાન

શું તમે આ પ્લગિનની પ્રગતિને સમર્થન આપવા માંગો છો?

 [ આ પ્લગિનને દાન કરો ](https://buymeacoffee.com/oosoft)