Add 2FA

[MagicLike]

For obvious security reasons (e.g. on a large scale), I would say that the option to use 2FA is a requirement.

[ThatOneCalculator]

Yes, please! I love using Umami but I feel this is something that's very necessary to add.

[boooong123]

Any updates on this feature request?

[samumatic]

2FA options like:

• WebAuthn
• OTP
• E-Mail

would be a secure basis.

[h0ek]

+1

[sudiptosarkar]

I just installed Umami, and I'm loving it already. But considering the fact this is a public facing service, the 2FA is a crucial missing ingredient.

Few ideas to begin with, on top of the options laid out by @samumatic:

• TOTP (Google Authenticator and stuff)
• Passkey (Fingerprints on phones and laptops, Face signin on Windows (works on Edge and Firefox for me, Chrome should work too))

[VMBindraban]

Any progress on this?

[mgntrn]

I'd like this too :)

[dewald-els]

We are looking at using Umami but unfortunately without 2FA we can not proceed. Is this something that is in the roadmap?

[rakurtz]

Very much appreciate this too. 2FA is a must on a public facing site these days.

[0xA1F1E]

I am baffled that this feature request for a basic security feature like 2FA is 3 YEARS old! How has this not been implemented yet? Very much required for a service that is meant to be running publicly.

[h0ek]

I am happy to donate some 🪙 for this :) just let me how much you need 💸

[MitchellSimY]

Bump - I love to see this feature please. In the current self-hosted version of Umami, it appears that one could possibly brute force the UI. I would really love if there was email 2FA we can set up.

[sudiptosarkar]

@MitchellSimY, Email is more of a hassle than say, Google Authenticator.

We'd have to setup SMTP server connections.

[MitchellSimY]

I see - I wouldn't mind an Authenticator app at all either! That'd be cool

[guiyumin]

wow, still no 2fa