PHPackages causal/mfa-protect - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. causal/mfa-protect ActiveTypo3-cms-extension[Security](/categories/security) causal/mfa-protect ================== Protect rendering of sensitive content elements with MFA. 0.3.0(1mo ago)0851GPL-3.0-or-laterPHPPHP >=8.1.0 <=8.5.99 Since Oct 20Pushed 1mo ago1 watchersCompare [ Source](https://github.com/xperseguers/t3ext-mfa-protect)[ Packagist](https://packagist.org/packages/causal/mfa-protect)[ RSS](/packages/causal-mfa-protect/feed)WikiDiscussions main Synced 1mo ago READMEChangelogDependencies (2)Versions (5)Used By (0) MFA Protect =========== [](#mfa-protect) This extension lets you force the use of a recent MFA token before rendering a content element. This may be used together with standard access restrictions in TYPO3 such as being part of one or more Frontend user groups. This screenshot shows how a given content element will be protected: [![Protected content](https://raw.githubusercontent.com/xperseguers/t3ext-mfa-protect/master/Documentation/Images/protected-content.png "Protected content")](https://raw.githubusercontent.com/xperseguers/t3ext-mfa-protect/master/Documentation/Images/protected-content.png) Installation ------------ [](#installation) Install the extension either from [TYPO3 Extension Repository (TER)](https://extensions.typo3.org/extension/mfa_protect/), or from packagist.org with Composer: ``` composer require causal/mfa-protect ``` In addition, you will need some extension adding support for Frontend MFA. At the time of writing, the only one the author can think of is its own extension [EXT:mfa\_frontend](https://extensions.typo3.org/extension/mfa_frontend). You may install it either from TER as well, or with Composer: ``` composer require causal/mfa-frontend ``` Configuration ------------- [](#configuration) Include the static template "Protect MFA" to your (main) TypoScript template. You can then use the Constants Editor or pure TypoScript to override the template location and the validity of the MFA token (it defaults to 30 minutes). **Hint:** the validity of the MFA token supports [stdWrap](https://docs.typo3.org/m/typo3/reference-typoscript/main/en-us/Functions/Stdwrap.html) :-) Usage ----- [](#usage) Edit any content element, switch to Access and toggle the MFA protect flag. That's it! [![Access flag](https://raw.githubusercontent.com/xperseguers/t3ext-mfa-protect/main/Documentation/Images/access-flag.png "Access Flag")](https://raw.githubusercontent.com/xperseguers/t3ext-mfa-protect/main/Documentation/Images/access-flag.png) ### Health Score 43 — FairBetter than 91% of packages Maintenance90 Actively maintained with recent releases Popularity12 Limited adoption so far Community8 Small or concentrated contributor base Maturity53 Maturing project, gaining track record Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~295 days Total 4 Last Release 52d ago PHP version history (2 changes)0.1.0PHP >=7.4.0 <=7.4.99 || >=8.0.0 <=8.2.99 0.3.0PHP >=8.1.0 <=8.5.99 ### Community Maintainers ![](https://www.gravatar.com/avatar/a04cce579abca57a056f0716f909fcf37ec60e227ee92cc4b58d18ee9aad62a2?d=identicon)[xperseguers](/maintainers/xperseguers) --- Top Contributors [![xperseguers](https://avatars.githubusercontent.com/u/646805?v=4)](https://github.com/xperseguers "xperseguers (48 commits)") --- Tags security2fasecureTYPO3 CMSprotectionMFA ### Embed Badge ![Health badge](/badges/causal-mfa-protect/health.svg) ``` [![Health](https://phpackages.com/badges/causal-mfa-protect/health.svg)](https://phpackages.com/packages/causal-mfa-protect) ``` ### Alternatives [causal/fal-protect Protect everything within /fileadmin/ based on associated folder and file restrictions (visibility, user groups and dates of publication). 1269.5k](/packages/causal-fal-protect)[phpmussel/phpmussel PHP-based anti-virus anti-trojan anti-malware solution. 431228.1k1](/packages/phpmussel-phpmussel)[tzsk/otp A secure, database-free One-Time Password (OTP) generator and verifier for PHP and Laravel. 241641.4k1](/packages/tzsk-otp)[leuchtfeuer/secure-downloads "Secure Download": Apply TYPO3 access rights to ALL file assets (PDFs, TGZs or JPGs etc. - configurable) - protect them from direct access. 22234.7k1](/packages/leuchtfeuer-secure-downloads)[irfa/php-sn-generator "Serial number generator for web aplication" 194.9k1](/packages/irfa-php-sn-generator) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)