Problem Statement
Users expect to have 2FA recovery codes automatically presented to them when setting up a 2FA method. Sentry does that when setting up 2FA for the first time in the account.
When setting a second method, for example, first setting up an authenticator app and some time later setting up a passkey, the recovery codes are not shown. This can cause confusion and bad UX when they are not presented with the codes.
Many services also show the codes only once (same as sentry does with auth tokens), which makes the situation worse.
Solution Brainstorm
A simple solution would be to show the codes every time a new 2FA method is added, which also serve as a reminder to users to have them.
Product Area
Unknown
Problem Statement
Users expect to have 2FA recovery codes automatically presented to them when setting up a 2FA method. Sentry does that when setting up 2FA for the first time in the account.
When setting a second method, for example, first setting up an authenticator app and some time later setting up a passkey, the recovery codes are not shown. This can cause confusion and bad UX when they are not presented with the codes.
Many services also show the codes only once (same as sentry does with auth tokens), which makes the situation worse.
Solution Brainstorm
A simple solution would be to show the codes every time a new 2FA method is added, which also serve as a reminder to users to have them.
Product Area
Unknown