I’m trying to figure out how to utilize supabase auth’s totp (timed one time password from an authenticator app such as those from google and microsoft).
The needs are:
ability to add an authenticator. This usually requires use of a qr code or setup key.
ability to remove an authenticator.
verifying the totp token on login.
Supabase supports this but I don’t see how to do it in weweb. The supabase auth one time password event just allows email or sms.
This probably is not implemented in the WeWeb’s plugin, but it might be doable with some custom code, since Supabase’s public instance is exposed in the editor. It might happen though that this might be a very new feature, which I’m not sure is included in the version of Supabase that is WeWeb using.
It isn’t supported by the plugin. MFA is a must have feature these days and not supporting it even though the backend has robust support seems like a really big miss.