SPIKE: Identify an appropriate 2FA tool or technology

[PaulMakinMojaloop]

Need to identify an appropriate tool, app or technology that can be adopted for Mojaloop deployments. Such a tool must be:

• able to integrate with the deployed IAM solution, so that a 2FA tool can be selected and sync'd between a user and the Hub IAM, and subsequently 2FA codes shared by a user logging on can be verified Hub-side
• accessible to and cost effective for a hub operator's staff

Common proprietary solutions might include Authy, Microsoft Authenticator and Google Authenticator. However, preference should be given to open source alternatives such as FreeOTP and 2FAS.

[JulieG19]

We need to work under the assumption that the IAM solution is keyclock: which means that effectively there will be two sets of epics: 1. selection of appropriate 2FA tools and 2. Integration of existing IAM solution with vNext.

[JulieG19]

Hello, as discussed the work for now on this spike is to do a comparision analysis (mentioning pros/cons of each tool based on a set of pre-defined criteria), suggest a best option and prepare an implementation approach to submit to the DA. For now, item 2 in my previous comment will be ignored. We will manage this under a seperate set of stories.

[JulieG19]

Epic to be created for IAM swap and create a dependency on this ticket. We also need a ticket for test coverage. IAM swap needs to go through design thinking before any development happens.