Auth0 Home Blog Docs

Multifactor authentication for custom login and custom signup

authentication_api
nodejs
custom-login
sms

#1

Hello,

I am using a custom signup and custom login for my application using auth0. I would like to implement multifactor authentication for my application i.e get sms verification code when logging in from different device or ipaddress.
For sign up i am using : /dbconnections/signup
For login i am using : /oauth/token

technology: angularjs 1.0 for frontend and node js for backend.


#2

You can read about how to setup multifactor authentication in general at: https://auth0.com/docs/multifactor-authentication

Given you mention that you want to use an additional factor based on SMS the following documentation would also be relevant:


#3

I am not using lock widget. I am using custom login and api calls to perform authentication. I found the solution for my problem. Below links will help others who are having similar problem.

  1. This api call will return a link in the response to set up guardian.
    https://auth0.com/docs/api/management/v2#!/Guardian/post_ticket

  2. This api call will return mfa token which is used to send code to the device
    https://auth0.com/docs/api/authentication#resource-owner-password-and-mfa

  3. This api call will take the code sent to the device and authenticates
    https://auth0.com/docs/api/authentication#resource-owner-password-and-mfa (Verify MFA using OTP)


#4

Hey, thanks for sharing this. Were you able to imitate the initial device setup through APIs? I couldn’t find any public API for enrolling a device.


#5