Two Factor Authentication

Overview

Lucy utilizes the Authy service for 2-factor authentication (2FA), enabling login via a security token from a mobile app or SMS.

Setup Steps

1. Create a Twilio Account:

   • Sign up for a free Twilio account here.

   • Log in to the Authy dashboard.

2. Set Up Application:

   • In the dashboard, navigate to "Authy" → "Applications" → "Get Started."

   • Verify your phone number by entering it and the received code.

   • Name your application (e.g., Lucy) and create it.

3. Add User and Retrieve API Key:

   • Add your first user's email and phone number.

   • Select "App Token" and enter the generated token from the Authy app on your phone.

   • Choose your created application, go to "Settings," and view your unique API key by clicking the eye icon next to "Production API KEY."

   • Copy this API key for use in Lucy.

Configure Lucy:

1. Open Lucy's interface.

2. Go to Settings → Advanced System Settings -> Advanced Settings

3. Paste the API key into the "2FA" field and save.

Setup 2FA for User Accounts:

1. Each user should go to the "Account" page.

2. Enter their phone number in the corresponding fields and save.

3. Press "Configure 2FA" and follow the on-screen instructions.

After configuring 2FA, users will be logged out and will need a 2FA token for the next login, obtainable via the Authy mobile application or SMS.

Important Notes:

• Email-based authentication is beneficial for air-gapped environments as it doesn’t rely on external services.