=== Ansico 2FA ===
Contributors: aphandersen
Tags: 2fa, two-factor authentication, totp, otp, security, login, backup codes, trusted devices
Requires at least: 6.0
Tested up to: 6.8
Stable tag: 1.0.0
Requires PHP: 7.4
License: GPLv3 or later
License URI: https://www.gnu.org/licenses/gpl-3.0.html

Flexible two-factor authentication for WordPress with TOTP, backup codes, trusted devices, per-user activation, and optional admin enforcement.

== Description ==

Ansico 2FA adds modern, user-friendly two-factor authentication to WordPress logins.

Users can enable 2FA from their profile, scan a QR code with their authenticator app, and store backup codes for recovery. Administrators can require 2FA for all users before login is completed.

Key features:

* TOTP-based two-factor authentication for WordPress logins
* Per-user activation from the user profile screen
* Optional admin enforcement of 2FA for all users
* Backup codes for account recovery
* Trusted devices with a configurable number of days
* Automatic submit when a 6-digit TOTP code is entered
* Copy button for backup codes
* Choice between internal and external QR code generation
* English-first interface with bundled English and Danish translations
* Optional plugin language override independent of WordPress site language

Ideal for site owners who want stronger login security without a complicated setup.

== Installation ==

1. Upload the plugin folder to `/wp-content/plugins/`, or install the ZIP via **Plugins > Add New > Upload Plugin**.
2. Activate **Ansico 2FA** through the WordPress Plugins screen.
3. Go to **Settings > Ansico 2FA** to configure enforcement, QR generation, and language settings.
4. Users can enable 2FA from their profile page.

== Frequently Asked Questions ==

= Which authenticator apps are supported? =

Any TOTP-compatible authenticator app should work, including Google Authenticator, Microsoft Authenticator, 1Password, Authy, and similar apps.

= Can I require 2FA for all users? =

Yes. Administrators can enable a setting that requires users to complete 2FA setup before they can finish logging in.

= What happens if a user loses access to their authenticator app? =

They can use one of their backup codes to sign in.

= What are trusted devices? =

A user can choose to remember a successfully verified device for a configurable number of days, reducing how often 2FA is requested on that device.

= Does the plugin support multiple languages? =

Yes. The plugin is English-first and includes English and Danish translations. It can follow the WordPress site language or use a plugin-specific language setting.

== Changelog ==

= 1.0.0 =
* First stable release.
* Added TOTP-based 2FA login flow.
* Added backup codes.
* Added trusted devices.
* Added internal and external QR code generation.
* Added copy button for backup codes.
* Added plugin language selection with English and Danish translations.
* Added optional global enforcement of 2FA by administrators.
