I want to enable MFA (SMS, Google Authenticator) in our login workflow that uses a Custom UI Hosted Login Page. That is, it does not use the Lock widget. (We can’t use the Lock Widget because it doesn’t support multiple Active Directory connections.)
This would be for Authorization Code and Implicit grant types. (I already see some docs about Resource Owner grant and MFA, but I don’t believe that will work here.)
Is this possible? Or does MFA require the Lock widget?
If possible, can anyone point me to any documentation?