Feature Request - 2 Step Auth (Google Authenticator)

There is a project called PlexAuth, currently it brings the following authentication feature to (not only) HTPC-Manager using NGINX as a reverse proxy, so, and this is a major downside, this authentication feature is not supported on Apache nor IIS webserver setups:

One Time authentication for generic apps (SickRage/CouchPotato/LazyLibrarian/SpotWeb/PlexPy/NZBGet/Transmission/etc.) behind the NginX reverse proxy using your existing Plex credentials.

So basically this means to securely accessing all your applications you only need to know your Plex credentials. It looks like an interesting feature to add to HTPC-Manager but ..... it is only supported using NginX as a reverse proxy because it depends on a specific NGinX auth module.

Regarding your question, i am not sure which 2fa implementation (regardsless of the solution) to go for is best, options are but not limited:

Plex initiated two factor auth using PlexAuth - There are sounds that Plex is going to implement two factor auth but until now no one has seen any evidence of that. Still the NginX dependency exists here.
PlexAuth initiated two factor auth, i contacted the author of the PlexAuth project about this. He replied that his goal was not implementing 2fa but if someone is willing, he accepts pull requests with additional features.
HTPC-Manager implementation of 2fa. To implement 2fa for HTPC-manager you would ideally also implement 2fa for the applications it "manages" or gives access to. Worst case, one would avoid multiple individual authentication methods. A single authentication solution is not something HTPC-Manager can provide without making use of a reverse proxy solution IMHO. But please do correct me if i am wrong!

Let's elaborate on the subject and make HTPC-Manager more secure and user friendly!!!

Hellowlol / HTPC-Manager

Feature Request - 2 Step Auth (Google Authenticator) #492