Developers are welcome to use Auth Armor for more advanced authentication and authorization flows. Below are some recommendations on how to this the right way for a backend service only auth experience.
- Authentication methods going through the Authenticator App
- WebAuthIn supported auth methods
- MagicLinks as the last channel
- Require the addition of a recovery method on the Authenticator app if you use it to prevent users from being locked out of their accounts entirely.
Updated about 1 month ago