About Multi-Factor Authentication (MFA)
Multi-Factor Authentication (MFA) adds additional security to your application by requiring that your users provide 2 identity factors when signing into your application. MFA is sometimes also called Two-Factor Authentication (2FA).
The following table lists the factors available for your application. On Userfront, any factor can be a first factor or a second factor, and by default a user's first and second factors must use a different channel from one another.
Strategy
Channel
MFA Requirements
You can configure your application to handle any of the following scenarios:
Configuration
Description
MFA Handling
Userfront automatically handles MFA enforcement on a per-user level. Users who do not have MFA required can use the same login flows and API endpoints as users who do require MFA.
Userfront’s API endpoints handle both single- and multi-factor authentication flows.
Users who do not have MFA enabled receive their JWT access token upon submitting the first factor:
Users who have MFA enabled receive their JWT access token upon submitting the first factor:
