Our clients are asking us for the use of authenticator apps. We have implemented this for our non-Sphinx apps, but it would be great to be able to do this here.
MFA is now a requirement for all users of online systems to comply with the the latest version of the UK's Cyber Essentials so would be create if this could be implemented
By the way, the email that Sphinx already provides (which can also be used to send an SMS) is already sufficient for UK Cyber Essentials. Obviously people want the authenticator stuff, but to get signed off for certification you can use what is there.
@Weetch_Russell that is on our radar as well. Actually, more specifically the Webauthn standard, is that what you are looking for? A new feature request could be created so we can track. Both will be implemented.
You mean OnGenerateEmailConfirmationToken? - it's only used for email validation. I need Sphinx to be able to also do OTP as part of signon, i.e.: prompt for the name, password and then email OTP and prompt for it, before the signon is complete, as a 2nd factor authentication.