What does HackerNews think of devise-two-factor?

Barebones two-factor authentication with Devise

Language: Ruby

In Ruby-on-Rails it's part of the authentication framework Devise https://github.com/tinfoil/devise-two-factor and related modules including creating QR codes, backup codes etc. PHP Laraval has similar libraries https://jetstream.laravel.com/2.x/features/two-factor-authen...

Auth0 and similar commercial companies might very good at marketing. Try replacing "API" with "library" or a programming language name.

> It's just not valuable enough for anyone to create

For a commercial API you need to charge $10 USD/month, or equivalent in terms of per-API-call, otherwise your service won't be profitable. You call 5 US cent already expensive, so I think you're right, it's not valuable enough.

If you use Rails and want to integrate two factor auth into Devise, we built a gem / devise strategy for that: https://github.com/tinfoil/devise-two-factor
This is great. More companies should do this and build it in as a recommended security feature. If you use rails, you can use the two factor auth gem we built: https://github.com/tinfoil/devise-two-factor

For more info check it out here: https://www.tinfoilsecurity.com/blog/two-factor-authenticati...

Also, for a list of services that provide 2FA, check out http://twofactorauth.org. It's a pretty extensive list, and hopefully more companies start adding 2FA.

Wow. The github repo[1] has pretty thorough usage docs, and the gem itself seems to be pretty feature-comprehensive.

Kudos to Tinfoil.

https://github.com/tinfoil/devise-two-factor