This feature is available starting with the CloudJiffy 5.5 version.
CloudJiffy PaaS allows configuring a two-factor-authentication (2FA) to add an extra security layer for my account. With this feature enabled, in addition to username and password, I do required to enter the code randomly generated in the authenticator application on my phone to access CloudJiffy account.
Below, we’ll go step-by-step on the two-factor authentication feature management:
-
Enable 2FA
-
Manage recovery codes
-
Deactivate 2FA
-
Working with API
Enable Two-Factor Authentication
In order to secure my account with the 2FA follow the next steps:
1. Go to the Settings section by clicking on the same-named button at the top-right corner of the dashboard.
2. Within the opened frame, switch to the Account tab and click Set Up Two-Factor Authentication.
I need to confirm my password via the appeared pop-up to proceed.
3. Next, I need to interconnect my CloudJiffy account with the Google Authenticator application on my mobile phone (if needed, follow the linked guide to help me with installation). Open the app on my device and add the account by either scanning the displayed QR code or manually typing the provided data.
As a result, I’ll see the six-digit code (automatically refreshed every 30 seconds), type it into the dashboard frame and click Next to verify.
4. In the second step, I’ll see the recovery codes, which can be used as a one-time alternative to the generated authentication codes.
Note: Ensure my recovery codes are saved. Otherwise, in case of my phone unavailability, I won’t be able to connect to my account. Also, they are the only option to restore access upon device loss.
I need to tick the I’ve saved the data checkbox (automatically checked after using the Download or Copy buttons) to be able to close this window by clicking Done.
5. Now, to login into account, I’ll need to provide the login/password credentials (as usual) and enter a code from the authentication application on my device (or the recovery code).
That’s it! My account is now protected with two-factor authentication.
Manage Recovery Codes
On the accounts with already enabled 2FA, it is possible to view/regenerate recovery codes:
1. Go to the Settings > Account section and click the View Recovery Codes button.
Confirm the password for my account to continue.
2. Here, I can see my current recovery codes and, if necessary, Download/Copy them with the appropriate buttons.
If I ran out of the recovery codes (as each one can be used just once) or if I consider them compromised, click the link at the bottom of the frame (circled in the image above) to generate new ones.
3. In the appeared pop-up, confirm the operation and, in a moment, I’ll get new codes.
Don’t forget to save the displayed recovery codes with the Download/Copy buttons, as the old ones won’t work anymore.
Disable Two-Factor Authentication
If I need to disable the 2FA for my account, follow the next steps:
1. Navigate to the Settings > Account section and click the Disable Two-Factor Authentication button.
Tip: In case I want to disable/rebind two-factor authentication due to device loss, use one of the recovery codes to log into the dashboard.
2. Confirm my decision through the appropriate pop-up and provide a password in the next one.
That’s it! My account is now accessible with just the login/password credentials.
Using API with Two-Factor Authentication
In order to get a valid session for the API requests on accounts with enabled 2FA, I need to call an additional Verify2FACode method after the SignIn one. In such a way, I’ll be able to provide a six-digit authentication code from the appropriate application on my device.
To avoid such complexity, it is recommended generating and using personal access tokens in my API requests and custom automation scripts.