Google Authentication for 2 Factor Authentication
I would love to be able to have the option for Google Authentication to be integrated into your current 2-Factor Authentication system. Hypothetically, if I were to misplace or brake my phone, it would take some time for me to be able get a new device in which time I would not be able to reenter my Twitch account. I mod for channels, work with creators and would feel awful if I was not able to continue supporting and working for them as I do.
It was also just be an ease of access thing, where I have all of my current 2F Authentication already with Google Authentication, so as this isn't necessarily an essential facet to this system, it would be a nice addition to this system.
Exciting news friends!
This is live! We are excited to announce that you can now use whatever 2fa authenticator you would like!
Twitter announcement: https://twitter.com/TwitchSupport/status/1330979700680904704
and if you have questions please read through our new help article here: https://help.twitch.tv/s/article/two-factor-authentication?language=en_US
-
letmeseeyourcakeface commented
I have already have TOTP and U2F/FIDO devices. Installing Authy is not an option. Since I cannot secure my account with open 2FA standards used by the rest of the Internet, I do not feel confident in transacting money through Twitch to support my friends who immigrated from Mixer.
-
jonaah commented
Please Twitch, it's been 4 years.
-
Cydramech commented
It's CY2020. There is no excuse for excluding a user from utilizing a separate TOTP/2FA app.
-
flynniec6 commented
Could we maybe change the title of this issue so it doesn't say Google? Standard TOTP for 2FA is what we want, it would result in the same win.
-
Ult1mat3Sn1p3z commented
Let's make this happen!
-
DRKO_ commented
Please get rid of the proprietary Authy 2FA.
-
tam0403 commented
Authy isn't that bad but standards existed for a reason, and people like to stick with some widely accepted and populate standards. Please bring TOTP defined in RFC 6238.
-
nah_tv commented
This is a great idea, and I feel like Twitch should implement this.
I have another account (besides this one) that I've been using for 5 years on Twitch that has 2FA enabled. I got locked out of it about 3 weeks ago and haven't been able to log back into my main account.
Twitch needs to get rid of Authy and 2FA and send the One Time Code by Email like how they do it with NEW created accounts.
It's 2020 after all this should have already been done, and since it has not been done, it needs to happen sooner than later.
-
w4v3junk13 commented
Why am I forced to use Authy for my 2FA. I prefer to use DUO Authenticator, for my 2FA as I use it extensively in my work and home environments. Even a Yubikey would be acceptable. I am trying to remove all SMS based 2FA as it is proven insecure. Its 2020 Lets work to be open.
-
frozenn00b_ commented
How is this STILL not a thing? TOTP and U2F are well established industry standards that don't require disclosing a private phone number.
-
Laope94 commented
How is this still not a thing? 2FA should work by scanning QR with any app like Google Authenticator, LastPass, Microsoft Authenticator, whatever... not just forced Authy.
BTW I've just requested Authy account deletion and I will stick just with SMS for twitch. -
MrDiabolicL commented
Lets stop calling it 'Google' authenticator
as then it becomes a stupid brand war. Get over yourselves, aspire to be decent.What we want, what is required is TOTP so we can choose.
Not everyone is a complete dependent fool just because they are game enthusiasts and not everyone subscribes to the mass coopt of having data and security handled for us.At least give the few people that care an option to opt-out and generate their own codes.
For shame. SHAME. -
Keybeeper commented
Using a proprietary standard like Authy instead of industry standard practices like TOTP is beyond unacceptable. This needs priority attention. But of course I'm sure Amazon/Twitch cut a swanky deal with Twilio to use exclusively Authy.
-
leventriloquist commented
I understand the two-factor verification; however I don’t think it’s right that the second step is limited to receiving a text message. For someone like myself I currently don’t have cellphone service so the idea of streaming is out the window. There are plenty of other ways to go around this such as sending the token to the email address or something of that sort; you guys are creative. I’d really like to see this set-back resolved.
-
Lethaltail commented
This is beyond stupid.
-
murderbits commented
This suggestion is poorly titled, in that it isn't about supporting "Google Auth". But yes, it is desperately needed for Twitch to support standard TOTP so that any TOTP client/solution can be used. It is ridiculous that Of the well over 100 2FA accounts I have in the world, Twitch is the ONLY one that requires Authy. It's literally the only reason I have Authy installed and it's a nuisance. The only thing as bad as Twitch about this is Steam, which uses it's own obnoxious client.
-
stankychikin commented
Yes.. This is ridiculous. I should not be forced to use SMS and/or have a separate app for one authentication.
-
rrrrzzzz commented
Why couldn't Twitch allow us a choice between Authy and 1 of the other 2 you suggested?
-
coolio6556 commented
There have been posts about this before, but they are from years ago.
Almost every single app in existence that uses 2FA uses open source authenticators like Google Authenticator or LastPass Authenticator. At this point, Twitch is the only app I have that uses Authy, and while it isn't the biggest inconvenience in the world, it's enough that it bothers me quite a bit. I would like to uninstall Authy entirely but Twitch is preventing me from doing that.
-
lemonez13 commented
I live in a cellphone dead zone. So its not ideal to require my cell phone for authentication.
I'm surprised after so many years we still don't have any new options, especially with how much they are pushing security for your twitch account.