- Update Inactive 2FA Report to use 2fa.directory API v3
Currently the “Inactive 2FA Report” feature is using v2 of the 2fa.directory API, however recently v3 has been released which adds fields to the API such as
additional-domains, which allows alternative/regional domains of the same site to be listed with a doc page (e.g. currently in the report for amazon, only amazon[.]com would trigger an inactive 2FA message, but by checking the
additional-domains property, amazon .de,.co.uk,etc… would be able to be marked as having inactive 2FA. Implementing this feature would resolve: Inactive 2FA report: Domain rules ignored · Issue #982 · bitwarden/web · GitHub.
1 day - I am happy to open a PR