Google introduces mandatory 2-Step Verification for Google Accounts

• andOTP

  75 3,604 2.5 Java

  Discontinued [Unmaintained] Open source two-factor authentication for Android

  

On Android, andOTP is good.

It is open source, maintained, easy to use, can do backups and re-present the QR code so you can easily scan it with another device.

https://github.com/andOTP/andOTP

• Aegis

  297 8,002 8.6 Java

  A free, secure and open source app for Android to manage your 2-step verification tokens.

  

The most common solution is one-time-use backup codes that most services give you when enrolling. Hopefully you saved them somewhere safe!

The main issue is Google Authenticator and how popular it is. As GP noticed, it doesn't flag the files as being allowed for backup which is kind of ridiculous. Almost anything is better, https://getaegis.app/ is my recommendation.

You can also manually backup your seed (screenshot / save the QR code during enrollment).

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• Bitwarden

  1,055 14,318 9.8 C#

  The core infrastructure backend (API, database, Docker, etc). (by bitwarden)

  

One common 2FA method is TOTP (time-based, one time password). Bitwarden [0] is a password/secrets manager that you can host yourself. It supports TOTP so you can just use that instead of a separate app like Google Authenticator or Authy. I would not recommend this personally as if you expose your master password for bitwarden, you've also made it possible for the attacker to sign in via 2FA... which normally would require access to your phone or backup keys. But it is more convenient.

Basically, people should be using password managers by this point. I recommend bitwarden because you can host it yourself, it's good for storing other secrets, and it has browser plugins/apps.

[0]: https://bitwarden.com/

• vaultwarden

  489 32,926 8.8 Rust

  Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs

TOTP support is free if you selfhost it, e.g. with Vaultwarden [0].

0: https://github.com/dani-garcia/vaultwarden

• Authenticator

  23 2,896 4.7 TypeScript

  Authenticator generates 2-Step Verification codes in your browser.

  

You can use https://authenticator.cc/ with Chrome or Firefox. There are many other TOTP generators for desktop. No need for Google Authenticator.

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

Suggest a related project