Skip to content
Translate Ideas and Comments
Choose language:
There was an error during translation
← Twitch UserVoice

Settings and activity

3 results found

  1. add the ability to use a Yubikey or other kinds of usb 2auth devices

    212 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    12 comments  ·  Account Management » Security and Privacy Settings  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Amphitryon supported this idea  · 

  2. Stop asking for mobile 2fa to register applications.

    4 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Developers » API  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    An error occurred while saving the comment
    Amphitryon commented  · 

    The application I want to register does not require any authentication flows other than the OAuth Client Credentials Grant Flow, i.e., there are no users whose information could be put at risk if my app (or Twitch account) is compromised. I cannot even enable SMS- or TOTP-based 2FA, as TOTP isn't an option unless SMS is already enabled (and remains that way), and SMS (despite implications to the contrary https://help.twitch.tv/s/article/two-factor-authentication) is not allowed for VoIP numbers such as Google Voice.

    Add in the fact that SMS-based 2FA and especially SMS-based password reset will greatly reduce security for security-conscious individuals (i.e., most developers), and it becomes clear that the mobile 2FA requirement should be re-evaluated and either removed or replaced with something more secure, such as pure TOTP without SMS.

    Amphitryon supported this idea  · 

  3. Stop requiring a phone number to set up 2FA.

    1,139 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    110 comments  ·  Account Management » Security and Privacy Settings  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    Amphitryon supported this idea  ·