Add keyboard-interactive (2FA/MFA) authentication support #90
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…TP, and Port Forwarding Co-authored-by: binaricat <[email protected]>
Copilot
AI
changed the title
[WIP] Add two-factor authentication (2FA) login feature
Add keyboard-interactive (2FA/MFA) authentication support
Jan 19, 2026
…interactive requests - Extract createProxySocket to shared proxyUtils.cjs module - Add 5-minute TTL cleanup for abandoned keyboard-interactive requests - Update sshBridge.cjs and sftpBridge.cjs to use shared module
The ssh2 library requires tryKeyboard: true in connection options to trigger the 'keyboard-interactive' event. Without this setting, the library will not attempt keyboard-interactive authentication even if it's listed in authHandler. Added to all connection configurations: - sshBridge.cjs (main connection + jump hosts) - sftpBridge.cjs (main connection + jump hosts) - portForwardingBridge.cjs
When a server uses keyboard-interactive for both password and 2FA: 1. First round prompts for "Password:" - now auto-filled with configured password 2. Second round prompts for 2FA code - shows modal for user input This fixes the issue where users had to manually enter password in the 2FA modal, leading to authentication failures. Applied to: - sshBridge.cjs - sftpBridge.cjs - portForwardingBridge.cjs
binaricat
approved these changes
Jan 20, 2026
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Adds support for SSH servers requiring keyboard-interactive authentication (2FA/MFA). Previously, connecting to hosts with multi-factor auth would fail silently.
Changes
Frontend
KeyboardInteractiveModalcomponent displays server prompts and collects user responsesBackend
keyboardInteractiveHandler.cjs- Shared module for centralized request/response management across all connection typeskeyboard-interactiveevent from ssh2onKeyboardInteractiveandrespondKeyboardInteractivemethodsFlow
Notes
echopropertyOriginal prompt
✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.