As of November 2022, Twilio no longer provides support for Authy SMS/Voice-only customers. Customers who were also using Authy TOTP or Push prior to March 1, 2023 are still supported. The Authy API is now closed to new customers and will be fully deprecated in the future.
For new development, we encourage you to use the Verify v2 API.
Existing customers will not be impacted at this time until Authy API has reached End of Life. For more information about migration, see Migrating from Authy to Verify for SMS.
Two Factor Authentication (2FA) helps keep you user accounts secure by validating two "factors" of identity. Most login systems only validate something your user knows, like a password. You can make it harder for evildoers to compromise a user account by also validating something a user has, like a mobile phone.
Check out the API reference for documentation on how to get started with the Authy 2FA API.
You'll learn how to:
In this tutorial, we will show you how to validate both of these factors in a token-based login system. To make everything a bit simpler, we'll also be using Twilio-powered Authy. Authy helps handle all the moving parts associated with 2FA, including sending one-time passwords via text message to your users.