Skip to content

Add new docs for OTP authentication #41748

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Add new docs for OTP authentication #41748

wants to merge 1 commit into from

Conversation

@Elchi3
Copy link
Member

@Elchi3 Elchi3 commented Oct 30, 2025
edited
Loading

Description

Adds new documentation describing OTP-based authentication. The article discusses three ways: email, SMS, and TOTP (authenticator apps)

Motivation

Developing a series of guides for implementing authentication covering various techniques, including passwords, one-time passwords, federated identity, and web authentication.

Additional details

  • Overall OTP is presented as a second factor or when confirming user intentions (e.g., payments) and not as a general purpose authentication method.
  • TOTP is presented as the most secure delivery method of one-time passwords.
  • Several flaws with email and SMS-based deliveries are discussed

Related issues and pull requests

None.

@Elchi3 Elchi3 requested a review from wbamberg October 30, 2025 16:17
@Elchi3 Elchi3 requested a review from a team as a code owner October 30, 2025 16:17
@github-actions github-actions bot added Content:Security Security docs size/m [PR only] 51-500 LoC changed labels Oct 30, 2025
@github-actions
Copy link
Contributor

Preview URLs

Flaws (5)

Note! 1 document with no flaws that don't need to be listed. 🎉

URL: /en-US/docs/Web/Security/Authentication
Title: Authentication
Flaw count: 5

  • broken_links:
    • Can't resolve /en-US/docs/Web/Security/Authentication/Passwords
    • Can't resolve /en-US/docs/Web/Security/Authentication/Federated_identity
    • Can't resolve /en-US/docs/Web/Security/Authentication/Passkeys
    • Can't resolve /en-US/docs/Web/Security/Authentication/Session_management
  • macros:
    • Can't resolve /en-US/docs/Glossary/JWT
External URLs (11)

URL: /en-US/docs/Web/Security/Authentication/OTP
Title: One-time passwords (OTP)

@sideshowbarker sideshowbarker removed the request for review from a team October 31, 2025 06:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@wbamberg wbamberg Awaiting requested review from wbamberg

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

Content:Security Security docs size/m [PR only] 51-500 LoC changed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Elchi3