Add 2-Factor Authentication

Question

Add 2-Factor Authentication

tjhorner opened this issue 9 years ago · 2 comments

tjhorner commented 9 years ago

I'd like to add these forms of 2FA:

Authy/Google Authenticator time-based authentication
Security Key (like YubiKeys)

In the future, it would also be nice to have 2FA over SMS, but that's not very necessary.

Answer 1 · 2016-06-10T16:53:08.000Z

Added Authy/GA authentication in 6a3a42f.

The TwoFactorMethod model was made to support multiple Two-Factor authenticators, such as an Authy authenticator and YubiKey authenticator. The 2FA validation method on the User object iterates through all of these and returns true if at least one matches. This'll make it pretty easy to add a YubiKey method, I'll just need to add a type field.

Answer 2 · 2016-08-24T12:43:18.000Z

I'll consider this done, and open an issue later for YubiKey 2FA.