Google Authentication for 2 Factor Authentication
I would love to be able to have the option for Google Authentication to be integrated into your current 2-Factor Authentication system. Hypothetically, if I were to misplace or brake my phone, it would take some time for me to be able get a new device in which time I would not be able to reenter my Twitch account. I mod for channels, work with creators and would feel awful if I was not able to continue supporting and working for them as I do.
It was also just be an ease of access thing, where I have all of my current 2F Authentication already with Google Authentication, so as this isn't necessarily an essential facet to this system, it would be a nice addition to this system.
Authy isn't that bad but standards existed for a reason, and people like to stick with some widely accepted and populate standards. Please bring TOTP defined in RFC 6238.
This is a great idea, and I feel like Twitch should implement this.
I have another account (besides this one) that I've been using for 5 years on Twitch that has 2FA enabled. I got locked out of it about 3 weeks ago and haven't been able to log back into my main account.
Twitch needs to get rid of Authy and 2FA and send the One Time Code by Email like how they do it with NEW created accounts.
It's 2020 after all this should have already been done, and since it has not been done, it needs to happen sooner than later.
Why am I forced to use Authy for my 2FA. I prefer to use DUO Authenticator, for my 2FA as I use it extensively in my work and home environments. Even a Yubikey would be acceptable. I am trying to remove all SMS based 2FA as it is proven insecure. Its 2020 Lets work to be open.
How is this STILL not a thing? TOTP and U2F are well established industry standards that don't require disclosing a private phone number.
How is this still not a thing? 2FA should work by scanning QR with any app like Google Authenticator, LastPass, Microsoft Authenticator, whatever... not just forced Authy.
BTW I've just requested Authy account deletion and I will stick just with SMS for twitch.
Lets stop calling it 'Google' authenticator
as then it becomes a stupid brand war. Get over yourselves, aspire to be decent.
What we want, what is required is TOTP so we can choose.
Not everyone is a complete dependent fool just because they are game enthusiasts and not everyone subscribes to the mass coopt of having data and security handled for us.
At least give the few people that care an option to opt-out and generate their own codes.
For shame. SHAME.
Using a proprietary standard like Authy instead of industry standard practices like TOTP is beyond unacceptable. This needs priority attention. But of course I'm sure Amazon/Twitch cut a swanky deal with Twilio to use exclusively Authy.
This is beyond stupid.
This suggestion is poorly titled, in that it isn't about supporting "Google Auth". But yes, it is desperately needed for Twitch to support standard TOTP so that any TOTP client/solution can be used. It is ridiculous that Of the well over 100 2FA accounts I have in the world, Twitch is the ONLY one that requires Authy. It's literally the only reason I have Authy installed and it's a nuisance. The only thing as bad as Twitch about this is Steam, which uses it's own obnoxious client.
Yes.. This is ridiculous. I should not be forced to use SMS and/or have a separate app for one authentication.
Why couldn't Twitch allow us a choice between Authy and 1 of the other 2 you suggested?
There have been posts about this before, but they are from years ago.
Almost every single app in existence that uses 2FA uses open source authenticators like Google Authenticator or LastPass Authenticator. At this point, Twitch is the only app I have that uses Authy, and while it isn't the biggest inconvenience in the world, it's enough that it bothers me quite a bit. I would like to uninstall Authy entirely but Twitch is preventing me from doing that.
I live in a cellphone dead zone. So its not ideal to require my cell phone for authentication.
I'm surprised after so many years we still don't have any new options, especially with how much they are pushing security for your twitch account.
your guide doesn't work with the current google authenticator app
I wrote a guide on how to get around this in the meantime: https://medium.com/@dubistkomisch/set-up-2fa-two-factor-authentication-for-twitch-with-google-authenticator-or-other-totp-client-f19af32df68a
One day we can dream
Please add this.
Annnd a bump.
Now that 2FA is required to be able to cash any money out, it's REALLY time Twitch switched to the open standard and away from Authy which is stupidly proprietary. If you're going to force us to use 2fa, give us the choice in app we use, and give us the CHOICE as to whether we want to provide Authy with our personal information or not. Frankly, forcing people to provide personal information to a 3rd party is stupid security-wise. Using a plug-in is not security-wise. Upgrade to follow Amazon.
Not supporting google auth is literal cancer.
up vote. don't wanna use an app which only used for twitch rather than twitch itself.