Note standards compliance, RFC 6238.

Time-Based One-Time Password Algorithm is the standard, so any 2FA program should work.

I'll test with Duo's 2FA token as well, and will update in a separate PR to add that app.
This commit is contained in:
Edward Vielmetti 2017-04-09 09:34:00 -04:00 committed by Sébastien Santoro
parent 2385915a13
commit e96055bb7e
1 changed files with 5 additions and 3 deletions

View File

@ -1,8 +1,10 @@
# 2-Factor Authentication
# Two Factor Authentication
2-Factor Authentication is a security mechanism that requires you to enter a computer generated code from your phone every time you log into Mastodon.
Two Factor Authentication is a security mechanism that requires you to enter a computer generated code from your phone every time you log into Mastodon.
We highly recommend that you set up 2-factor authentication as it prevents malicious users from logging into your account if they obtain your password.
We highly recommend that you set up two factor authentication as it prevents malicious users from logging into your account if they obtain your password.
The two factor auth protocol used by Mastodon is an implementation of [RFC 6238](https://tools.ietf.org/html/rfc6238), TOTP: Time-Based One-Time Password Algorithm.
## Warning