Skip to content
This repository has been archived by the owner on May 31, 2022. It is now read-only.

How to implement microservice mobile phone verification code login? #1514

Open
zhengzizhi opened this issue Oct 25, 2018 · 1 comment
Open

How to implement microservice mobile phone verification code login? #1514

zhengzizhi opened this issue Oct 25, 2018 · 1 comment
Labels
status: waiting-for-triage

Comments

@zhengzizhi
Copy link

No description provided.

@Doogiemuc
Copy link

Doogiemuc commented Oct 30, 2018
edited

I have the same question:
I have a backend REST API that (successfully) is configured with oauth. Users from my Single-Page-Application can login with their username and password. (Oauth grant_typoe="password")

But now I want users to be able to login without a password. An SMS one time token should be sent to the users mobile phone. Then the user can enter the received code and should be authenticated.

This is similar to a two factor authentication. How do I merge that into spring-security-oauth.

@zhengzizhi I found this great tutorial by Baeldung. It describes two factor authentication with the Goolge Authenticator Mobile App. This would be even more secure, IF you trust Google :-) https://www.baeldung.com/spring-security-two-factor-authentication-with-soft-token

But back to this question: How to implement login via SMS. How can I return the oauth token to the client?

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
status: waiting-for-triage
Milestone
No milestone
Development

No branches or pull requests
3 participants
@zhengzizhi @Doogiemuc @spring-projects-issues