Two-Factor Authentication (2FA / TOTP) – PrestaShop Module

Two-Factor Authentication (2FA / TOTP) — Two-Factor Authentication - Settings (back office)

Two-Factor Authentication (2FA / TOTP)

€49.99

No tax

TOTP two-factor authentication (Google Authenticator, Authy) for the back office and customer account: QR enrollment, encrypted secrets and backup codes.

Optional annual renewal: €7.99/year (updates and support).

Self-contained RFC 6238 TOTP 2FA, with no external library and no network call.

TOTP/HOTP/Base32 implemented in-house (HMAC-SHA1, +/- step tolerance)
QR enrollment (otpauth:// URI) with the secret also shown for manual entry
Secrets encrypted at rest (AES-256-CBC) and single-use backup codes (bcrypt)
Anti-bruteforce lockout, replay protection and constant-time comparison
Per-profile enforcement for employees; customer self-service in the account

Compatibility: PrestaShop 1.6 / 1.7 / 8 / 9. Multilingual (IT + EN included). No core modification: the module uninstalls cleanly.

Support: updates and assistance included. Contact: prestashop@cavallini.net

🖥️ Try this module live

Open a real PrestaShop demo back office and configure Two-Factor Authentication (2FA / TOTP) yourself.

Open the demo →

Reference

cll_2fa

User guide (PDF, IT)

Module user guide in Italian (PDF).

Download (569.56KB)

User guide (PDF, EN)

Module user guide in English (PDF).

Download (569.62KB)

Version	Date	Changes
1.0.0	2026-06-14	First public release. - TOTP two-factor authentication for the back office (Google Authenticator, Authy, 1Password compatible). - Per-employee enrollment with QR code and recovery, anti-lockout safeguard. - Enforcement across AJAX and export endpoints.