https://supertokens.com/ logo
Join Discord
Powered by
Hey, I'm looking at following example: https://git...
# support-questions-legacy
f
Hey, I'm looking at following example: https://github.com/supertokens/supertokens-auth-react/tree/master/examples/with-thirdpartyemailpassword-2fa-passwordless and I have 2 questions. - Is it possible to change the order of verification on signup - Default is: enter credentials, enter phone number, verify otp, verify email - To: enter credentials, verify email, enter phone number, verify otp - If I have another login page with paswordless only, would provided example (api server) support that flow?
r
hey @fdundjer
- It is possible to do this. On the frontend, you will need to change the global claim validator to have the email verification claim before the MFA claim. There might be more changes required though, which will need investigation from our side. Once we have the proper MFA support, order changing will be as easy as just changing one config. - It should be fine. You may need to play around with the session claims on the backend. But it is possible.
f
Cool, thanks. Do you have any info when can we expect proper MFA support?
r
in a few months.
f
Adding SecondFactorClaim to end of array indeed changes the order. Problem is that link from email will successfully do login instead of prompting for phone number.
r
right. But the second factor claim should fail after that. Does that not happen?
f
Nope
r
hmm
f
I'll spin the project again
r
which API on the backend marks the 2fa claim as completed?
f
consumeCodePOST in Paswordless recipe
r
right, and you are using the passwordless recipe as a way to also verify the email correct?
or is the email verification recipe doing that for you?
f
you were correct
it fails after email verification
r
right yea
so, in this case, you will need to detect claim failure and redirect the user to the right screen.
3 Views
PreviousNext
Powered by