GitHub 2FA violates the American Disability Act #68928
-
Select Topic AreaQuestion BodyGitHub 2FA violates the American Disability Act as there appears to be no simple automatic way for a disabled person who can not use or has no phone to use 2FA. If there is a simple way - what is it ? |
Beta Was this translation helpful? Give feedback.
Replies: 16 comments 24 replies
-
Well, the good news is there are also desktop apps such as KeePassXC out there. Maybe one of those would be a good fit. You might also get some value out of GitHub's 2FA FAQ. |
Beta Was this translation helpful? Give feedback.
-
I looked at KeePassXC just how does that help ? It appears to be a simple password manager. |
Beta Was this translation helpful? Give feedback.
-
There are also browser extensions that have TOTP (authenticator app) functionality. |
Beta Was this translation helpful? Give feedback.
This comment was marked as off-topic.
This comment was marked as off-topic.
-
Hi @righthalfplane, thanks for the feedback. Have you been able to resolve the issue you noted in the opening post? To be specific, are you able to sign into GitHub with 2FA? If you're still having trouble, I'd love to learn more about the issue you are having. Are you looking for a 2FA solution which doesn't involve a mobile phone? If I have understood your problem correctly, Configuring two-factor authentication is a useful doc with a lot of options. I spotted a couple of options which help:
|
Beta Was this translation helpful? Give feedback.
-
What's worse is that after feeding the Authenticator-du-jour its QR-code-Meal 🥘, and pressing the button to prettify and lint the recovery hashedy-hashes into a selectable/copy/paste í-frame, there's not á shadow of evidence of what to do next. So i'm gumped into pressing the back arrow, which stærts the infernal process all óver anew. |
Beta Was this translation helpful? Give feedback.
-
LoL no, they aren’t. They might do equally as well be behind a paywall.
On Fri, Oct 13, 2023 at 8:53 AM Sarto Jama ***@***.***> wrote:
Hey there @62f <https://github.com/62f>,
Are you having trouble opening the URL provided on your end? GitHub's Docs
are public, and don't require you to sign in in order to view them.
—
Reply to this email directly, view it on GitHub
<#68928 (reply in thread)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AQJKVJJLXGG2DWVYZCJVF63X7FBU5ANCNFSM6AAAAAA5OLL4BQ>
.
You are receiving this because you were mentioned.Message ID:
***@***.***>
|
Beta Was this translation helpful? Give feedback.
-
Tried to reply but was greeted with this:
Anyway I’m already on GitLab as a code contributor for Alpine, out of
necessity. The 500lb 🦍 in the room is that I’ve used GH for my GL login
for quite some time now, and you suggest migrating but there’s nothing to
migrate! 2FA was reported to be intended as a ˋnih!´ for the knights, I mean, 'coding
contributors' ONLY and their kinsmen, I mean co-pilots, or whatever- but to I myself who hadn't EVER contributed a single scrap of
code and is just a droll little beta tester, repository
cloner/builder/compiler and technical-issue reporter, 2FA ˋshrubbery‘ was never said to been appearing. TK;DR But NOW I'm being locked out, & I'm almost certain there're others.
Repeating in English : I can’t
write code to save my life, nor would I try. But the devs I must deal with on GH
do code, and many chose to fight the 2FA demon and remain bottled up in here. Are you also those and their coconspirators into the GL-cornfield, TOO, or are they simply trying to get away from their codeless counterparts?
…On Fri, Oct 13, 2023 at 7:38 AM kuroodo ***@***.***> wrote:
I recommend migrating your account to GitLab, which allows importing repos
from GitHub. They do not force 2FA on their users like GitHub does. They
also have email 2FA which in my opinion is the best and most secure form of
2FA for the average user.
—
Reply to this email directly, view it on GitHub
<#68928 (reply in thread)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AQJKVJONPG7E4SBWOXT2I2LX7EY4XANCNFSM6AAAAAA5OLL4BQ>
.
You are receiving this because you commented.Message ID:
***@***.***>
|
Beta Was this translation helpful? Give feedback.
-
I recommend everyone leave github They are now just become bullies and another Microsoft app. They are unfit to host the open source community's work. Now they don't even let you decide how to authenticate. they force you to tie your account to SMS or some app. Move on. Github has lost it's way.Forcing 2fa against dev's will is EXACTLY the kind of behavior that made MS infamous. Why kill github? why don't you get it? MAKE 2FA OPTIONAL |
Beta Was this translation helpful? Give feedback.
-
Hey there @righthalfplane, In response to this discussion post, and for anyone else that does have concerns about the accessibility of requiring two factor authentication when accessing GitHub, our Accessibility team has amended the Two Factor Authentication Frequently Asked Questions 🔑 🗝️ post to include the following heading: What options do you have for users who rely on assistive technology and users with accessibility requirements?. I'll also include the text here for reference:
Thanks! |
Beta Was this translation helpful? Give feedback.
-
HI @ghostinhershell , Your answer is meaningless double talk - you say, with no proof, that you have them covered - Post the a address of a page that a blind person can use to generate the 2FA and use it - off course it means nothing until a few blind people verify that with no other help that they could actually get things working. |
Beta Was this translation helpful? Give feedback.
-
Hi @ghostinhershell, The policy you link to states that code contributors are required to use 2FA but @righthalfplane said they don't write code; they're a tester. Is there a way to adjust the setup of @righthalfplane's Github account from Github's end so they're not required to use 2FA? |
Beta Was this translation helpful? Give feedback.
-
|
Beta Was this translation helpful? Give feedback.
-
Yesterday afternoon while I was searching for something (I should have saved it, but I was searching for something else), I ran across a email from a blind person who was complaining that people would not point him at the things that he actually need - so he wasted much time. THAT is what people did to me. I have been on the "internet" since February 1976 and I have written network applications for Los Alamos National Laboratory. I wasted 3 or 4 hours getting things to work, because I do not have a cell phone. Like I said above - The "KeePassXC Tutorial" was worthless - much too complicated - I needed a 10 line explanation which I found in the middle of a 20 minute uTube video. The changes of a non expert working this out on his own is just about zero or even given help like I got - he would need a lot of persistence and some luck to get things going. There are other thread here where people document their problems and have failed at their last post. You have taken a blind person into HomeDepot and said there you have everything you need to build your house - go to it. |
Beta Was this translation helpful? Give feedback.
-
Seeing the staff's copy/pasted response is honestly pretty sad. What's worse, when a blind person is told to read the steps or guides with no clear direction on where to start or even how to get 2FA to work. My sympathy for people with disability. As I write this I now only 2 days of grace period until my account is locked forever because I refuse to enable 2FA. The moment you force people including me to use 2FA is the moment you crossed the line by telling us we can't access our data despite knowing our login because "screw you - that's why" |
Beta Was this translation helpful? Give feedback.
-
VIPLightning, your are correct. Note that Banks,Apple, Microsoft and uTube do not force people to use 2FA - It appears that GitHub has come up with this idea on their own. |
Beta Was this translation helpful? Give feedback.
Hey there @righthalfplane,
In response to this discussion post, and for anyone else that does have concerns about the accessibility of requiring two factor authentication when accessing GitHub, our Accessibility team has amended the Two Factor Authentication Frequently Asked Questions 🔑 🗝️ post to include the following heading: What options do you have for users who rely on assistive technology and users with accessibility requirements?. I'll also include the text here for reference: