Feature 2.4 Alonso Hernández & _________ - ISIS3510-MOBILE-T34/T34-Wiki-SpendiQ GitHub Wiki
Use External Services: Two-step Authentication
This feature is tied to the authentication process. We will implement a two-step authentication system where users will receive a verification code via external service to access the app. This ensures the security of their financial data, and it will be implemented using Firebase Authentication services. The goal is to safeguard sensitive information by preventing unauthorized access, making SpendIQ a trustworthy platform for managing finances.
User Story
As a user of SpendIQ, I want to enable two-step authentication so that I can receive a verification code via SMS or WhatsApp to ensure secure access to my financial data.
Functionality Scenarios
Goal: Implement two-step authentication for increased security during the login process.
-
Scenario 1:
- Given that I have enabled two-step authentication in SpendIQ, when I enter my email and password during login, the system should send a verification code to my selected method with my external service (SMS). When I input the correct verification code, the system should grant me access to my account. If I input an incorrect code, the system should prompt me to re-enter the verification code.
-
Scenario 2:
- Given that I have not enabled two-step authentication in SpendIQ, when I log in using my external service (SMS) and password, the system should allow me immediate access to my account without requesting a verification code.