2 factor login for experience user

Lars_Andersson · April 16, 2020, 12:04pm

Can 2 factor login be setup for an experience user?

JuliaKempf · April 16, 2020, 2:39pm

The logic for two-factor authentication could be configured within a workflow, did you have a specific method or service in mind?

There is also an interesting forum post where a user created a login and CAPTCHA within their experience. It may provide some inspiration, so if you’re interested, you can check it out here!

Thanks,
Julia

Josh_Bell · May 11, 2020, 10:25pm

Hi @JuliaKempf
I’m also interested in how to do MFA (two-factor authentication) for experience users. Can it be done using Microsoft Authenticator or Google?

thanks

Josh

anaptfox · May 12, 2020, 9:59pm

@Josh_Bell, @Lars_Andersson,

We’ve been doing some thinking and research for you.

These are the general instructions but I’m adding this to our list of examples to make. You should be able to accomplish 2FA through a couple of methods:

SMS & Email

This route requires some effort. Depending on your preference of SMS and Email (the process would be very similar), you can implement your own 2FA flow in Losant.

You could use Twilio or SendGrid as the services to send the messages.

You would need to build at least two experience workflows.

Generate Token Workflow - This workflow will generate the token for the user, and send via email or SMS.
Verify Token Workflow - This workflow accepts a token from a user, verifies it, and set their authentication cookie.

I recommend using JWT Tokens for the secrets. You can learn more about JWT Tokens here. You will have to store a secret or one-time code for the user. The best place for this is Experience User Tags.

2FA via Rest API

I think this one would be the easiest to integrate. You can use the HTTP Node to talk to the Authy API.

jbwaihe · November 1, 2020, 9:19pm

I’m trialing the 2FA verification service with Twilio. I managed to use their service with cURL from their documentation.
But I’m having issues with the formatting in the Losant HTTP node. Can you check what I’m doing wrong ? I get a 400 error with the message “Missing required parameter To in the post body”

anaptfox · November 2, 2020, 2:23pm

Hey @jbwaihe,

Could you please provide a link to the documentation you’re referring to?

It looks like one thing in your string is “%2B” which is the + symbol when URL encoded. Have you tried using the + symbols directly?

jbwaihe · November 6, 2020, 2:18am

Yes I did try + directly also.

The documentation I referred to is here:

Topic		Replies	Views
Access Experience Workflow result from external api call Help experience , workflow , rest-api	6	641	May 4, 2021
User Interaction to Udate Values Help experience , users	5	486	July 22, 2021
Talk2M api using http block Help	4	778	November 6, 2018
Securing Device UserID and Passwords Help edge , workflow , rest-api	4	261	January 30, 2024
Experience Workflows - No Trigger Workflow Node Detected Help experience	3	502	July 8, 2019

2 factor login for experience user

SMS & Email

2FA via Rest API

Related Topics