When presented with the 2FA prompt, it should indicate that I am using an authenticator app and not a text message. Some 2FA sites will use a text message, so when the ting site says that it is waying for the code from a message on your phone, that makes me think that I didn't get it. Since knowing that I use an app and not some other 2FA verification may require an authenticated session already, maybe just suggest that the verification code can be from various sources.
That's an interesting concept -- I'm not sure we have visibility on what method you're actually using to get the 2FA codes, but the wording could absolutely be clearer. I'll be sure to bring this up to the design team and see if it could be made clearer. Thanks!
Please sign in to leave a comment.