search

undp / carbon-registry

National Carbon Credit Registry Digital Public Good (DPG) by Digital For Climate (D4C) collaboration. Code coordinated by ExO/CDO & BPPS/Climate.
GNU Affero General Public License v3.0
48 stars 40 forks source link

2FA - Virtual #78

Open mbelinsky opened 1 year ago

sapumalxep commented 1 year ago

Which 2FA options are required?

Dev Estimate for Virtual 2FA - Intial setup and login - 8 Dev Estimate for SMS - Intial setup and login - 4 Need SMS service provider.

mbelinsky commented 1 year ago
  1. Review open source options
  2. Choose one
  3. Implement a. For user: 2FA = optional b. For development: Abstract to allow for messaging-based 2FA

Email: Subject: Your [country] Carbon Registry 2FA Authentication Code

Dear [User's Name],

For enhanced security on the [country] Carbon Registry, we have initiated a two-factor authentication (2FA) process for your account.

Your 6-Digit OTP Code: 123456 (Please note this code is valid for 10 minutes.)

How to Use Your OTP Code:

  1. Go to the Carbon Registry login page and enter your credentials.
  2. When prompted, input the 6-digit OTP code provided above.

Why Use 2FA? Two-factor authentication provides an extra layer of security for your account. Even if someone knows your password, they won't be able to access your account without the unique OTP code.

Don't have a 2FA authenticator app? We recommend using 2FAS. It's simple and reliable. You can get started by visiting 2FAS and following the instructions to download and set up the app. Other app options include Authy, Duo, and Google or Microsoft Authenticator.

Remember: Never share your OTP code with anyone, even if they claim to be from our support team. We will never ask for it.

Thank you for helping us maintain the security and integrity of the Carbon Registry.

Best regards, Carbon Registry Security Team