COSMOS is a web application designed to manage collections indexed in NASA's Science Discovery Engine (SDE), facilitating precise content selection and allowing metadata modification before indexing.
Right now the login is solely based on username and password. If this gets leaked, someone could cause damage in the data. So we want to make sure that our login system is locked down by implementing Multi-factor authentication.
Implementation Considerations
Don't write this from scratch; look into libraries that have these functions
Decide whether to do just SMS or also authenticator app based on complexity
Deliverable
Every user on the system should have MFA enabled
Any future users should have MFA enabled by default when signing up
Description
Right now the login is solely based on username and password. If this gets leaked, someone could cause damage in the data. So we want to make sure that our login system is locked down by implementing Multi-factor authentication.
Implementation Considerations
Deliverable
Dependencies
No response