Page MenuHomePhabricator

Factor scratch tokens into own 2FA method
Closed, DuplicatePublic


I thought there was a task for this, but I can't find it...

In the current implementation, scratch tokens are embedded into the TOTP 2FA provided by the OATHAuth extension.

It should be possible (but obviously not ideal with some of the UX issues) to have just scratch tokens as a TOTP method, as well with other methods like WebAuthn - T244348: Recovery option for WebAuthn