Twitch
Sign in with OpenID Connect
Sign in
prestine
Sign in with OpenID Connect
Signed in as (Sign out)
Close
Close
  • Sign in
  • Sign up
← Account Management: e.g., Login, Connections, Password Reset

How can we improve the account management experience?

Feedback

Account Management: e.g., Login, Connections, Password Reset: 2FA

Categories

  • CATEGORIES
  • All ideas
  • My feedback
  • 2FA 7 ideas
  • Connections 3 ideas
  • Feature Request 7 ideas
  • Login flow 5 ideas
  • Other 2 ideas
  • Password Reset 3 ideas
  • Signup 2 ideas
  • Usernames 9 ideas

JUMP TO ANOTHER FORUM

(thinking…)

  • Searching…

    No results.

    Clear search results
    • Accessibility 39 ideas
    • Account Management: e.g., Login, Connections, Password Reset 38 ideas
    • Ads 63 ideas
    • Bits 27 ideas
    • Channel: Panels, settings, profile, notification, etc 89 ideas
    • Chat/Messaging 145 ideas
    • Community Guidelines 6 ideas
    • Creator Camp 93 ideas
    • Creators and Stream Features 125 ideas
    • Developers 165 ideas
    • Discovery: Browsing and Searching 94 ideas
    • Extensions 18 ideas
    • Game Mods & CurseForge 227 ideas
    • General 721 ideas
    • League of Legends Live Tracker Extension 161 ideas
    • Localization 11 ideas
    • Moderation Tools 45 ideas
    • New Channel Page 92 ideas
    • New Creator Dashboard 532 ideas
    • Subscriptions 56 ideas
    • Twitch Applications: Consoles 35 ideas
    • Twitch Applications: Desktop 80 ideas
    • Twitch Applications: Mobile 61 ideas
    • Twitch Applications: TV Apps 28 ideas
    • Twitch Con 7 ideas
    • Twitch Rebrand 8 ideas
    • Twitch Sings 10 ideas
    • Twitch Studio 201 ideas
    • Video Features 134 ideas
    • Video Performance 51 ideas

  • Twitch

Open standard 2FA with QR codes

Could we please move away from the Authy only 2FA implementation currently used and provide standard TOTP and QR codes?

This would work much better for people who already have a stack of 2FA accounts in other solutions, remove reliance on a single application, fix issues with support (eg. Windows Phone), remove the need for a phone number (important for younger users I'd imagine) and generally increase flexibility and usability of 2FA for everyone by not locking us into a proprietary implementation.

55 votes
Sign in
prestine
Sign in with OpenID Connect
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Line_Noise shared this idea  ·  February 10, 2016  ·  Flag idea as inappropriate…  ·  Delete…  ·  Admin →
Tweet

4 comments

Sign in
prestine
Sign in with OpenID Connect
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • walkendead_ commented  ·  February 01, 2020 09:10  ·  Flag as inappropriate  ·  Edit…  ·  Delete…

    Absolutely. TOTP would let people use applications they already trust, like Google Authenticator. If they use password managers that support TOTP like 1Password, they don't have to use two applications to authenticate. Using non-standard 2FA makes users more dependent on your third-party provider, a relative nonentity who seems to think association with cryptocurrencies makes them look more trustworthy and not dodgy af. (In its most charitable reading, this calls their marketing competence into question.)

    I tend to use 2FA everywhere, but honestly, I'm concerned that Authy, in particular, makes me less secure than 1FA using a long, unique password from my password manager. It gives me new risks to manage, and no real information to help me quantify that risk. (The guilt-by-association wrt cryptocurrencies is suggestive and concerning; nothing is objective and mitigating.)

    I'm staying away from your 2FA solution for those reasons. Use standard TOTP, let me choose my provider, and I'm on it like a shot. (Or add FIDO/U2F so I can use my Yubikey.)

    Submitting...
  • trumpi27 commented  ·  March 19, 2019 08:21  ·  Flag as inappropriate  ·  Edit…  ·  Delete…

    I recently had to deal with Authy's terrible customer service. One week in, and my case is still ongoing. I really hope that Twitch can ditch these clowns and use the standard TOTP method for two factor authentication. Or at least allow it in place of Authy.

    Submitting...
  • Divus commented  ·  June 02, 2016 15:34  ·  Flag as inappropriate  ·  Edit…  ·  Delete…

    +3 and please vote for the similar wishes too:

    https://twitch.uservoice.com/forums/297558-general/suggestions/14373747-please-support-rfc-6238

    https://twitch.uservoice.com/forums/310228-account-management-e-g-login-connections-pass/suggestions/11498085-google-authentication-for-2-factor-authentication

    Submitting...
  • Hibame commented  ·  February 11, 2016 15:53  ·  Flag as inappropriate  ·  Edit…  ·  Delete…

    I'd give all my votes to this if I could give more then 3.

    Submitting...
Twitch
Twitch Terms of Service Powered By UserVoice

Your password has been reset

We have made changes to increase our security and have reset your password.

We've just sent you an email to . Click the link to create a password, then come back here and sign in.