Basically the idea is to get rid of emails and use these steps instead.
- Server generates a lengthy code (maybe a uuid) (used as a username), and a lengthy secret (used as a password) and a qr code that if you scan will setup a TOTP for you (used as extra auth) (google authenticator stuff)
does this make sense? is it secure for like a temporary login system that doesn't breach privacy or something?
submitted by /u/Zealousideal-Leg-288
[link] [comments]
from Software Development – methodologies, techniques, and tools. Covering Agile, RUP, Waterfall + more! https://ift.tt/uZP5FSy
Ameer Academy 