A Web app to manage your Two-Factor Authentication (2FA) accounts and generate their security codes
A web app to manage your Two-Factor Authentication (2FA) accounts and generate their security codes
2FAuth Demo
Credentials (login - password) : [email protected]
- demo
2FAuth is a web based self-hosted alternative to One Time Passcode (OTP) generators like Google Authenticator, designed for both mobile and desktop.
It aims to ease you perform your 2FA authentication steps whatever the device you handle, with a clean and suitable interface.
I created it because :
2FAuth is currently fully localized in English and French. See Contributing if you want to help on adding more languages.
2FAuth provides several security mechanisms to protect your 2FA data as best as possible.
You have to create a user account and authenticate yourself to use the app. It is not possible to create more than one user account, the app is thought for personal use.
You can sign in 2FAuth using a security key like a Yubikey or a Titan key and disable the traditional login form.
Sensitive data stored in the database can be encrypted to protect them against db compromise. Encryption is provided as an option which is disabled by default. It is strongly recommended to backup the APP_KEY value of your .env file (or the whole file) when encryption is On.
2FAuth automatically log you out after an inactivity period to prevent long life session. The auto logout can be deactivated or triggered when a security code is copied.
2FAuth generates OTP according to RFC 4226 (HOTP Algorithm) and RFC 6238 (TOTP Algorithm) thanks to Spomky-Labs/OTPHP php library.
2FAuth supports importing from the following formats: 2FAuth (JSON), Google Auth (QR code), Aegis Auth (JSON, plain text), 2FAS Auth (JSON)
You can contribute to 2FAuth in many ways: