Ask A Question

Notifications

You’re not receiving notifications from this thread.

2factor Auth best practice, Please help

chigreen asked in Rails

Thank you, Chris. I have watched the Gorails 2factor Auth tutorial. I have a couple of questions that leave me with a few questions.

  • I imagine a scenario where a person has left their laptop open, and a passerby changes their settings to remove 2-factor auth.
    • Can I add a feature requiring the user to enter their password to change the 2-factor setting?
    • Is this requiring a password for the setting change convention, or am I adding unneeded complexity?
    • Do you know of a tutorial that shows how to add a password to a change in settings? If this is commonplace?
Reply
Join the discussion
Create an account Log in

Want to stay up-to-date with Ruby on Rails?

Join 85,376+ developers who get early access to new tutorials, screencasts, articles, and more.

    We care about the protection of your data. Read our Privacy Policy.