I've been very paranoid about security recently, and I'd really love to see two-factor authentication on RPR. Using an app like Authenticator would be my top choice, but any method would make me very glad 
I'm always up for more security....but to play devil's advocate (and satisfy my own curiosity), how would one who does not have a smart device or access to said app be able to access rpr if this method was employed?
Two-factor authorisation is only ever optional, so no people would be punted off the site for not having a smart phone. Most methods I can think of rely on smartphone capabilities, with the exception being text messages.
Claine wrote:
Two-factor authorisation is only ever optional, so no people would be punted off the site for not having a smart phone. Most methods I can think of rely on smartphone capabilities, with the exception being text messages.
Ohh okay....I'm not terribly familiar with the process I suppose. Either way if there was a second stage verification that was optional for me to use, I'd most likely use it also.
This would be really nice! I don't think I can promise this quite yet, especially not at launch, but know that it's an excellent suggestion and I'm keeping it on my list for when I have the ability to look at more new features.
Voldarian_Empire wrote:
I'm always up for more security....but to play devil's advocate (and satisfy my own curiosity), how would one who does not have a smart device or access to said app be able to access rpr if this method was employed?
Claine wrote:
Two-factor authorisation is only ever optional, so no people would be punted off the site for not having a smart phone. Most methods I can think of rely on smartphone capabilities, with the exception being text messages.
There are ways to enable multiple factors of authentication even if you don't have a mobile device (tablet, smartphone, etc). The Time-Based One Time Password (TOTP) standard can be implemented on desktop applications, and has been.
For example, KeePassXC allows for TOTP generation.