Almost two years ago I had written a tutorial around 2FA in a Node.js API with time-based one-time passwords. If you’re unfamiliar, two-factor authentication is becoming the norm, which it wasn’t necessarily back in 2017. If you’re managing user accounts in your web applications, it is critical that you offer your users a second factor of authentication to prevent phishing and malicious login attempts.
While the previous tutorial is still valid, it uses a less popular library to accomplish the task. This time around we’re going to explore using a more popular library called Speakeasy to manage two-factor authentication (2FA) within our Node.js with Express.js application.Read More
Not too long ago I wrote about authenticating within a Node.js API using Json Web Tokens (JWT). The basis of the example is around authenticating via a username and password and receiving a JWT for every future request against the API. While that example is incredibly useful and follows best practice, it doesn’t cover the scenario where you’d like to have a two-factor authentication (2FA) option for your users. In case you’re unfamiliar, 2FA is a second layer of protection for accounts made possible by a time-based token generated by a shared secret key.
We’re going to see how to add a two-factor authentication option to our Node.js API while continuing to use Json Web Tokens.Read More
Not too long ago I released a time-based one-time password manager called OTP Safe to Google Play and iTunes. That particular application was built with Ionic Framework and I even wrote a tutorial explaining how to make a similar 2FA manager with Ionic 2. Being a hybrid mobile application, there were some performance limitations that came with the Ionic 2 application. This inspired me to convert the application to something native and NativeScript seemed like a solid solution.
Let’s take time-based one-time password management to the next level and create a native mobile application with NativeScript and Angular.Read More
A few years back I created an Android and iOS application called OTP Safe that managed time-based one-time passwords. This application was made with the first version of Ionic Framework and at the time was great because it accomplished more than the Google Authenticator application. Now that Ionic 2 is approaching stable release, it seemed like a cool idea to take this one-time password application and build it with the latest and greatest including Angular.
We’re going to see how to create an iOS and Android time-based one-time password manager using Ionic 2, Angular, and TypeScript.Read More
Using the following resources as our framework, we can make use of the TOTP algorithm quickly and easily:
OTP Safe for Android and iOS has just been released in the Google Play and iTunes app stores. OTP Safe makes use of the time-based one-time password (TOTP) algorithm common for two-factor authentication (2FA) for websites and other applications.Read More