Two Factor Authentication

Two factor authorization is an optional feature for the admin app's login, enabled in the .env environment file:


There are three distinct 2FA login steps. The first is prompting for the email address:


Upon email address validation, a two factor code is emailed to this email address:


Then the second step prompts for this code:


Upon two factor code validation, the third step prompts for the password:


Two factor codes are stored in a separate "twofactorauthentication" database table:


Set allowed number of attempts, and minutes until two factor code expiration, in the library back-end config: