Support 2FA for login


(Max Uetrecht) #1

Hi!
Are there any plans to support 2FA login through TOTP/U2F? For security reasons I’d really like to see that.


(Takuya Matsuyama) #2

Hi Max,

Thank you for the suggestion.
Yeah 2FA would be great.
However, Inkdrop always has to have your encryption key but it is also encrypted with your credentials.
To support 2FA, we have to change this fundamental system so it will take for a while.
I’m currently working on the end-to-end encryption feature.
Once I’ve done the current roadmap, we would discuss about this feature with other users.


(Takuya Matsuyama) #3

Memo:


(Max Uetrecht) #4

Hi Takuya and thanks for your quick reply.
I looked at your e2e implementation draft: When finished 2fa/u2f should just be an extra authentication layer, shouldn’t it?
As of u2f (hardware based security tokens like yubikey), I’d like to show you this excellent blog post https://medium.com/@guerrerocarlos/yubikey-second-factor-authentication-implementation-in-one-afternoon-or-less-ea0eb2352f40

Lastly I’d like to ask, if you are planning to public your working drafts of the e2e implementation, so that members of the community may help you.


(Takuya Matsuyama) #5

Yeah, sounds like simple.
I will take a look at the blog post!

I’m planning to publish the part of my source code for e2e encryption. I’d be happy to hear your thoughts! Thanks.