Skip to content

feat(account): added 1FA method#6645

Open
firdevs-a wants to merge 6 commits into
mainfrom
MTA-7171
Open

feat(account): added 1FA method#6645
firdevs-a wants to merge 6 commits into
mainfrom
MTA-7171

Conversation

@firdevs-a

Copy link
Copy Markdown
Collaborator

Your checklist for this pull request

Description

Please describe what you added or changed.

@firdevs-a firdevs-a self-assigned this Jun 29, 2026
@firdevs-a
firdevs-a requested a review from a team as a code owner June 29, 2026 14:51
@firdevs-a firdevs-a added the do not merge PR that shouldn't be merged before a specific date (eg release) label Jun 29, 2026
@firdevs-a
firdevs-a requested a review from a team as a code owner June 29, 2026 14:51
@firdevs-a firdevs-a added the do not review yet please wait before reviewing its not ready yet label Jun 29, 2026

@caugier-scw caugier-scw left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some points that occur in multiple parts of the document :

  • it was already there, but passkey is the true passwordless login, when using webauthn as a second factor, we use "security key" instead
  • Identity Verification is actually called User Verification (UV in short)
  • When starting a webauthn authentication, it is not necessarily the password manager which is triggered, it can be a browser-managed pop-up, or OS depedent

Comment thread pages/account/how-to/log-in-to-the-console.mdx
Comment thread pages/account/how-to/log-in-to-the-console.mdx Outdated
Comment thread pages/account/how-to/log-in-to-the-console.mdx Outdated
Comment thread pages/account/how-to/log-in-to-the-console.mdx Outdated
Comment thread pages/account/how-to/log-in-to-the-console.mdx Outdated
Comment thread pages/account/how-to/use-2fa.mdx Outdated
Comment thread pages/account/how-to/use-2fa.mdx
Comment thread pages/account/how-to/use-2fa.mdx Outdated
Comment thread pages/account/how-to/use-2fa.mdx Outdated
Comment thread pages/account/how-to/use-2fa.mdx Outdated
@firdevs-a firdevs-a added the status: tech review Waiting for technical review label Jul 3, 2026
- As a second factor login method (2FA): after entering your password, SSO credentials, or an authentication code, a passkey confirms your identity.
- As a passwordless login method (1FA): if your passkey supports identity verification, it handles both factors in a single gesture, no password required.
- As a passwordless login method (1FA): if your passkey supports user verification, it handles both factors in a single gesture, no password required. User verification means your device confirms that you are the authorized owner before releasing the passkey, typically via a biometric check (fingerprint, Face ID) or a PIN. For example, a macOS passkey protected by Touch ID supports identity verification.
- As a second factor login method (2FA): if your passkey does not support user verification, it acts as a WebAuthn security key — confirming possession of the device after a first factor (password, SSO, or authentication code).

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe replace 1FA by MFA in a single step

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

do not merge PR that shouldn't be merged before a specific date (eg release) do not review yet please wait before reviewing its not ready yet status: tech review Waiting for technical review

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants