Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

Question: one of our users got locked out of their account when they set up TOTP 2FA with 1Password. I'm not sure how that happened, I tested 1Password with Ory and it works fine for me, but they are getting "invalid authentication code". Not sure if user error or a bug, and they unfortunately did not save the backup codes. Is there anything you guys can do to check?

On a related note, I saw that the ability to reset 2FA was recently merged into Kratos. There hasn't been a new release yet, but how long does it usually take for new releases to be deployed to Ory Network?

Hey Jakob.
We usually deploy new features very quickly to Ory Network. We have some internal events this week, so it might take until next week, but I will see to clarify the status of this particular feature.

As for the 1Password issue, is there any way I could reproduce this? Otherwise I am not sure how to look into this :thinking_face:

fyi <@U010F2N7G2X>