Hi All,
Is anyone in the community aware of the best method for working out how many of their auth0 users have had an expired or invalidated OTP?
We use email for OTP and the challange we have is that OTP has a 5 minute timeout. So what we are trying to understand is how many MFA requests have expired (longer than 5 mins) or have been invalidated (customer initiated subsequent OTP requests)? I would have thought there would be an event log entry specifically for this scenario but doesnt appear to be one. All I can think if is taking the count of success events and the count of gd_send_mail events working out that as percentage.
Any pointers would be greatly appreciated!
P.S.
Is there anything on the Auth0 roadmap for having some pre-built reporting within the dashboard ?
Hi @moobycow
Thank you for reaching out to us!
I would say that you are on the correct path of looking at the logs and searching for the gd_send_email event code, as that shows the expedition of the OTP email to your user. At this moment, we do not have a reliable out of the box solution to counting these events. What could potentially help in this case would be to implement Log Streams that might offer more ways of viewing logs, but apart from counting the number of a specific log within a timeframe, which can still be achieved via our standard Auth0 logs service, I could not say what real advantages it could present.
Given that the gd_auth_succeed event log is generated right after a successful MFA Authentication, it can be used to indicate when the streak of generated OTP emails ends, therefore when the user authenticates. The number of gd_send_email before this event log represents how many times the OTP email was issued.
If you feel like such a feature would prove useful to you and others, I encourage you to submit Feedback on this matter, as other users can vote for your idea as well. Our Product team monitors the Feature Request section and can see the suggestions that present the most interest.
Hope this helped, have a great weekend!
Gerald