tbar0970
commented
6 months ago But we'd need to cover the scenario where somebody logs in with 2FA then changes their mobile number.
Open tbar0970 opened 6 months ago
tbar0970
commented
6 months ago But we'd need to cover the scenario where somebody logs in with 2FA then changes their mobile number.
Typically Jethro is configured so that when a user sends an SMS message, the SenderID is the mobile number of the current Jethro user. It would be good to be able to verify that this number is actually the correct mobile number of the user. This could be achieved in tandem with 2-factor SMS auth. The permission levels that require 2FA could have the "send SMS" permission permanently ticked.