Email OTP with Multi-Factor Authentication
This guide shows you how to implement Email OTP authentication when a user has multi-factor authentication (MFA) enabled.
Overview
When MFA is enabled, the authentication process requires two steps:
- Verify the user’s email with a one-time password
- Verify the 6-digit code (TOTP) from their authenticator app
Implementation
Step 1: Start Email OTP Authentication
First, initiate the email OTP authentication process:
Step 2: Submit the OTP Code
After the user receives the email OTP, they must submit the code to continue.
The signer status will change to AWAITING_EMAIL_AUTH
when an OTP code needs to be submitted:
Step 3: Complete Authentication
If MFA is required, the signer status will change to AWAITING_MFA_AUTH
. You’ll need to collect and submit the TOTP code from the user’s authenticator app: