Sometimes, rarely, but sometimes, users encounter the TOTP screen and fail to provide a valid token, due to their device time being out-of-sync with the real-time.
Especially during Setup, we could either a) check +10/-10 tokens from the given token, or b) the following..
During login, if the TOTP code is provided is incorrect (2+ times maybe?), we could include additional diagnostic / debugging steps, such as Please check the time on your device matches XX:XX, Authentication apps are time-sensitive and being more than a minute out-of-sync will cause authentication failures.
To note: During the setup, I wouldn't want to see it succeed, but rather alert that it's an expired token due to a time-sync issue.
Sometimes, rarely, but sometimes, users encounter the TOTP screen and fail to provide a valid token, due to their device time being out-of-sync with the real-time.
Especially during Setup, we could either a) check +10/-10 tokens from the given token, or b) the following..
During login, if the TOTP code is provided is incorrect (2+ times maybe?), we could include additional diagnostic / debugging steps, such as
Please check the time on your device matches XX:XX, Authentication apps are time-sensitive and being more than a minute out-of-sync will cause authentication failures.To note: During the setup, I wouldn't want to see it succeed, but rather alert that it's an expired token due to a time-sync issue.