Table of Contents
Introduction
By law it is required to enable MFA for users on web aplications having editor or admin permission. We have some simple webs with Basic authentication where no application internal usermanagement exists.
We wanted to keep the current logon mechanism (because of other dependencies) and touch a minimum of the code. So we didn’t want to add a user management in each application.
The idea was born to build a mfa server that implements “a few” mfa methods that can be used by any application we want to connect.