If a 2FA solution has been deployed as part of a Mojaloop Hub, then its use should be enforced.
This story assumes that a staff member's details have been created in the IAM solution by another staff member with the appropriate credentials/privileges appended to their role.
When the staff member successfully logs on using their assigned credentials, a check should be made as to whether or not a second factor has been associated with their identity.
If no such 2FA is found:
the staff member should be prompted to select one 2FA mechanism from a list of those accepted by that deployment, and to configure/synchronise it with the Hub's IAM solution. Details should be retained with their identity.
The staff member should be logged off (forced to login/re-authenticate, this time including 2FA).
If a 2FA solution has been deployed as part of a Mojaloop Hub, then its use should be enforced.
This story assumes that a staff member's details have been created in the IAM solution by another staff member with the appropriate credentials/privileges appended to their role.
When the staff member successfully logs on using their assigned credentials, a check should be made as to whether or not a second factor has been associated with their identity.
If no such 2FA is found:
If a 2FA is found:
Acceptance Criteria