NOTE: This page is in DRAFT form.
SimpleAuth's Local Accounts support various forms of Multi-Factor Authentication for users signing in with local account credentials. The following mediums are supported for MFA:
| Method | Description |
|---|---|
| Send a verification code to a user via SMTP to complete login. | |
| SMS / Text | Use a 3rd party provider to sent SMS Text messages to complete login. Currently only Twilio is supported as a provider. |
| One-Time Password (OTP) | Use an authenticator app such as Microsoft Authenticator or Google Authenticator to provide users with a verification code to complete login. |
- Open your API's App Settings file.
- In the
AppConfigsection, make sure theEnableMfaViaEmailsetting is set totrue. - Make sure the
EmailSettingssection is configured to use SMTP by setting theUseSmtpPickupvalue tofalseand by correctly entering the domain or IP address of theSmtpServeras well as any applicable credentials or settings required to send mail via your SMTP server.
- Open your API's App Settings file.
- In the
AppConfigsection, make sure theEnableMfaViaSmssetting is set totrue. - In the
SmsSettingssection, enter your SMS provider account credentials. Currently only Twilio is supported as a SMS provider. Support for other providers is coming someday. You can use theSimulateSendfunctionality to capture simulated text messages to a local folder for development / demo purposes.
- Open your API's App Settings file.
- In the
AppConfigsection, make sure theEnableMfaViaOtpsetting is set totrue. - In the
AuthSettingssection, specify theOtpIssuerName. This is the name of the app that will appear in your authenticator app. - To setup the user's authenticator app, the user can scan the QR code generated from the API's Auth Controllers endpoint named
SetupAuthenticator.