2FA / MFA - Is there a plan to add this?
-
Hello!
As someone who enjoys your site and sees that people might have a lot of purchased books in their libraries, wouldn‘t it be a good thing to enable this extra layer of security?
Thanks in advance
-
@Areos This is a great idea. It has become a basic security feature for the vast majority of web shops and platforms with money involved.
-
Yeah, I'm not happy with not having any MFA available. But the billing is via stripe and nothing is saved by JNC if you are not logged in to stripe (assumption based on using this elsewhere).
MFA is dead simple to add. I was converting an old VB .net desktop application to a web app for a customer this past week and once I had the web app version working, adding the totp based MFA functionality took like 20 minutes.
Of course adding search functionality back in that we lost in the web update is also dead simple, but only got done in the last few weeks sometime.
-
I genuinely like 2FA and MFA to keep important stuff safe. However, I can't really see JNC accounts being a target for hacking in any situation. There's simply no financial gain to be had so those people won't waste their time here. In that regard, it doesn't really feel necessary for JNC to add this feature as a priority.
-
You're kidding, right? "No financial gain" is not a defense against attack. Some people attack to find out if there is something to gain, and others attack as practice for attacking somewhere else.
Even sites that do not have any logins get attacked, probably in hopes that there are other sites on the same network.
-
@SomeOldGuy Definitely not kidding. I won't attempt to downplay your concerns, just providing my own opinion on the subject.
