Open grrrrr opened 2 years ago
I don't think that things have really changed very much since I wrote my comments on that bug - we would need to make substantial changes to other things before we consider this.
In reality it's probably only something we could do once we have finally managed to move the authentication to use a standard framework like devise which no doubt has the necessary tools available.
no problem Tom, thanks for getting back to me
I have no idea whether the following blog post is of any use. It talks about TOTP in the context of Devise: https://reinteractive.com/articles/implementing-2FA-with-authenticator-apps-(totp)-in-rails
Some of the gems mentioned there appear to be still maintained: devise_two_factor, rotp and rqrcode
Description
This was originally asked in #979 but was closed in 2015 due to lack of support. I would like to re-address this given the time passed, coming up on 7 years, and hopefully more capacity is available.
It would be very useful to get TOTP based support on the website so that users and OSM volunteers can add an additional layer of protection to their accounts