Twitch
Sign in with OpenID Connect
Sign in
prestine
Sign in with OpenID Connect
Signed in as (Sign out)
Close
Close
  • Sign in
  • Sign up
← Account Management: e.g., Login, Connections, Password Reset

How can we improve the account management experience?

Feedback

Account Management: e.g., Login, Connections, Password Reset: 2FA

Categories

  • CATEGORIES
  • All ideas
  • My feedback
  • 2FA 9 ideas
  • Bugs 2 ideas
  • Connections 6 ideas
  • Feature Request 9 ideas
  • Login flow 5 ideas
  • Other 5 ideas
  • Password Reset 3 ideas
  • Signup 2 ideas
  • Usernames 13 ideas

JUMP TO ANOTHER FORUM

(thinking…)

  • Searching…

    No results.

    Clear search results
    • Accessibility 81 ideas
    • Account Management: e.g., Login, Connections, Password Reset 54 ideas
    • Ads 75 ideas
    • Bits 41 ideas
    • Channel: Panels, settings, profile, notification, etc 152 ideas
    • Chat/Messaging 197 ideas
    • Community Guidelines 20 ideas
    • Creator Camp 204 ideas
    • Creators and Stream Features 201 ideas
    • Developers 276 ideas
    • Discover: Browsing and Searching 131 ideas
    • Emotes 46 ideas
    • Extensions 28 ideas
    • Game Mods & CurseForge 259 ideas
    • General 723 ideas
    • IGDB 47 ideas
    • League of Legends Live Tracker Extension 190 ideas
    • Localization 16 ideas
    • Moderation Tools 81 ideas
    • New Channel Page 138 ideas
    • New Creator Dashboard 1,391 ideas
    • Purchase Management: e.g., Checkout, Payment Methods, etc 2 ideas
    • Subscriptions 68 ideas
    • Twitch Applications: Consoles 40 ideas
    • Twitch Applications: Desktop 95 ideas
    • Twitch Applications: Mobile 77 ideas
    • Twitch Applications: TV Apps 36 ideas
    • Twitch Con 7 ideas
    • Twitch Rebrand 9 ideas
    • Twitch Sings 16 ideas
    • Twitch Studio 295 ideas
    • Video Features 162 ideas
    • Video Performance 64 ideas

  • Twitch

Open standard 2FA with QR codes

Could we please move away from the Authy only 2FA implementation currently used and provide standard TOTP and QR codes?

This would work much better for people who already have a stack of 2FA accounts in other solutions, remove reliance on a single application, fix issues with support (eg. Windows Phone), remove the need for a phone number (important for younger users I'd imagine) and generally increase flexibility and usability of 2FA for everyone by not locking us into a proprietary implementation.

77 votes
Sign in
prestine
Sign in with OpenID Connect
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Line_Noise shared this idea  ·  February 10, 2016  ·  Flag idea as inappropriate…  ·  Delete…  ·  Admin →
Tweet

6 comments

Sign in
prestine
Sign in with OpenID Connect
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • letmeseeyourcakeface commented  ·  July 06, 2020 10:42  ·  Flag as inappropriate  ·  Edit…  ·  Delete…

    I have already have TOTP and U2F/FIDO devices. Installing Authy is not an option. Since I cannot secure my account with open 2FA standards used by the rest of the Internet, I do not feel confident in transacting money through Twitch to support my friends who immigrated from Mixer.

    Submitting...
  • mulrich88 commented  ·  April 06, 2020 12:24  ·  Flag as inappropriate  ·  Edit…  ·  Delete…

    Seeing as Twitch is literally the only reason I even have an account with Authy, and their app on my phone, I indeed support this. I'd like to just be able to use Google's Authentication.

    I mean, even the main Amazon site allows me to do that.

    Submitting...
  • walkendead_ commented  ·  February 01, 2020 09:10  ·  Flag as inappropriate  ·  Edit…  ·  Delete…

    Absolutely. TOTP would let people use applications they already trust, like Google Authenticator. If they use password managers that support TOTP like 1Password, they don't have to use two applications to authenticate. Using non-standard 2FA makes users more dependent on your third-party provider, a relative nonentity who seems to think association with cryptocurrencies makes them look more trustworthy and not dodgy af. (In its most charitable reading, this calls their marketing competence into question.)

    I tend to use 2FA everywhere, but honestly, I'm concerned that Authy, in particular, makes me less secure than 1FA using a long, unique password from my password manager. It gives me new risks to manage, and no real information to help me quantify that risk. (The guilt-by-association wrt cryptocurrencies is suggestive and concerning; nothing is objective and mitigating.)

    I'm staying away from your 2FA solution for those reasons. Use standard TOTP, let me choose my provider, and I'm on it like a shot. (Or add FIDO/U2F so I can use my Yubikey.)

    Submitting...
  • trumpi27 commented  ·  March 19, 2019 08:21  ·  Flag as inappropriate  ·  Edit…  ·  Delete…

    I recently had to deal with Authy's terrible customer service. One week in, and my case is still ongoing. I really hope that Twitch can ditch these clowns and use the standard TOTP method for two factor authentication. Or at least allow it in place of Authy.

    Submitting...
  • Divus commented  ·  June 02, 2016 15:34  ·  Flag as inappropriate  ·  Edit…  ·  Delete…

    +3 and please vote for the similar wishes too:

    https://twitch.uservoice.com/forums/297558-general/suggestions/14373747-please-support-rfc-6238

    https://twitch.uservoice.com/forums/310228-account-management-e-g-login-connections-pass/suggestions/11498085-google-authentication-for-2-factor-authentication

    Submitting...
  • Hibame commented  ·  February 11, 2016 15:53  ·  Flag as inappropriate  ·  Edit…  ·  Delete…

    I'd give all my votes to this if I could give more then 3.

    Submitting...
Twitch
Twitch Terms of Service

Your password has been reset

We have made changes to increase our security and have reset your password.

We've just sent you an email to . Click the link to create a password, then come back here and sign in.