Tuesday, Feb 22, 2011
Google's implementation of 2-factor authentication would be a fantastic platform for third parties needing the same functionality. Imagine that you run a website that could benefit from 2-factor authentication. If Google chose to support it, a Google Authenticator API would be dead simple. Say you run Reddit and want to support 2-factor auth. You could send a request to the GAuth API with the name of your service/account (in this example, "Reddit: kfury") and Google would pass back a secret token and a url to a QR code image. You (Reddit) store the secret token in your user database and associate it with your user. You give the QR code to the user so they can suck it in to their phone with their Google Authenticator app.
If you like it, please share it.
Hi, I'm Kevin Fox.
I also have a resume.
I'm co-founder in
The Imp is a computer and wi-fi connection smaller and cheaper than a memory card.
We're also hiring.
©2012 Kevin Fox