The Google Authenticator app on phone is a great way to get one-time passwords (far better than SMS) but I really want a one-tap experience.
-
-
Handshake with the phone, "Hey person sitting on the computer did you just get prompted for a OTP code oh you did yeah one tap you're done."
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Namecheap recently implemented exactly what you are talking about, via the
@twilio Authenticator SDK https://blog.namecheap.com/announcing-onetouch-2fa/ …Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
DUO security basically does this for getting onto our corp network/mail, tho no idea how.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
I'm against the extension. Let's say my PC is pwned. That means they can compromse my credentials and the extension. NotReallyTwoFactor
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
That said, some 2FA you login, a box appears on your unlocked phone, you hit okay, and the login completes. Best I've seen so far.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
There’s no “Google API”, TOTP is serverless by design. Authy has what you say, it requires vendor lock-in. I hate sites that require it.
-
1Password comes close to your ideal purely client-side: use it to fill your usr/pwd, it prepares your 2FA token on clipboard for you.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.