Setting Up for One Time Passwords
An One Time Password is an automatically generated string of numbers that is used to authenticate a user for a single log in session to .wms. This provides an extra layer of security for your system than just using a static user-created password.
Both one time passwords and two factor authentication can be enabled at the same time at a site. At login, users will choose which authentication method they wish to use.
At this stage, your one time password is sent to the email address that is in your user profile and that you use to log in to .wms. The one time password can only ever be used for one session and will expire after 5 minutes, by default.
To use one time passwords with .wms, make sure the appropriate system parameter is enabled.
The dotWMS.OTPEnabledTransports setting must have a value of Email.
The dotWMS.OTPExpiryMinutes setting is the time after which the one time password will expire. By default, this is 5 minutes.
The dotWMS.2FAAllowRememberMe setting is used to include the Remember me for 30 days checkbox on the login screen.