Two-factor authentication (2FA) on Fleek

Two-factor authentication is intended to help you protect the access and control of actions within your Fleek Platform account. You may not necessarily see it enabled during the login flow.

It acts as a backup mechanism for your account to ensure that actions within your account are under your full control and are intentional.

Configuring two-factor authentication

The purpose of this configuration is to protect and validate the integrity of your account so that it doesn’t get misused. Configuring two-factor authentication also helps you perform properly monitored activities which are secured by inputting or scanning a code as an additional layer of verification.

A TOTP (Time-Based One-Time Password) application automatically generates an authentication code that updates at regular intervals. These apps can be downloaded to your phone or desktop. Some popular examples of TOTP apps are Google Authenticator, Microsoft Authenticator and Authy.

  1. Download a TOTP app of your choice to your phone or desktop.
  2. In the upper-right corner of any page, click your profile photo, then click ‘Account Settings’.

  1. In the left sidebar on the ‘Settings’ page, click ‘Two-factor authentication’.
  2. In the ‘Two-factor authentication’ section of the page, click ‘Enable two-factor authentication.‘
  3. Under ‘scan the QR code’, do one of the following:
    • Scan the QR code with your mobile device’s app. After scanning, the app displays a six-digit code that you can enter on Fleek.
    • If you can’t scan the QR code, click ‘Setup key’ to see a code, the TOTP secret, that you can manually enter in your TOTP app instead.

  1. The TOTP application saves your account on Fleek and generates a new authentication code every few seconds. On Fleek, type the code into the field under ‘Verify code.‘
  2. The ‘Continue’ button becomes active. When clicked on it takes you to a second step to get your recovery codes.
  3. Under ‘Download your recovery codes,’ click the ‘Download’ button to download your recovery codes to your device. Save them to a secure location, because your recovery codes can help you get back into your account if you lose access.

  1. After saving your two-factor recovery codes, click ‘I saved my codes’ to enable two-factor authentication for your account.

Managing two-factor authentication

There may be cases where you lose access to your TOTP app or lose the key due to an uninstall of your TOTP app. You also may lose the directory where you downloaded your recovery codes, or delete the codes unintentionally. In these cases, you will have to generate a new TOTP key or new recovery codes. You can easily do both of these things.

  1. In the ‘Manage two-factor authentication’ section, you will see a rectangular bar that has an ‘Active’ button and an ellipsis to the right of it. Click on the ellipsis.

  1. When the ellipsis is clicked, a modal appears with the following options:

    • ‘Generate new key'
    • 'Regenerate recovery codes'
  2. 'Generate new key’ links back to Step 5 here and it helps generate the six-digit code you enter on Fleek from your TOTP app.

  1. ‘Regenerate recovery codes’ links back to Step 8 here to generate new recovery codes for you to download.

Two-factor authentication settings

In the ‘Two-factor settings’ section, you can enable two-factor authentication to take effect whenever certain activities are performed within your account.

They are disabled by default, but you can click on the ‘Edit settings’ button to toggle to the edit state so you can choose which ones to enable.

There are three activities currently for which you can setup two-factor authentication:

  • Deleting a project
  • Deleting a site
  • Inviting a member

Whenever any of the actions are about to be performed within your account, a modal pops up asking for the six-digit code in your TOTP app that you added to your Fleek account. An alternative option is to use the recovery codes you downloaded from setting up your two-factor authentication.

Disable two-factor authentication settings

In the ‘Two-factor settings’ section, you can disable two-factor authentication by clicking the ‘Disable two-factor authentication’ button. This action will open a modal window asking for confirmation with two options: ‘Cancel’ and ‘Disable.‘

If you decide to disable two-factor authentication, you go back to having a default information page with the ‘Enable two-factor authentication’ button.