Hi
I'm looking to modify my web2py login to do a poor man's 2 factor auth.
I would like my login to proceed like this:
1. present login page
2. user fills out username/password and submits
3. if username/password match proceed to step 4 - if not, re-display login page
4. send sms message with random 6 digit code to the user cell phone
5. pop up screen for user to enter the 6 digit code
6. If the code matches the generated code then set the user as logged in - if it doesn't match, then the user is not logged in
Has anyone done anything like this before? I'm trying to figure out how to pop up the additional screen and take input before marking user as logged in.
-Jim