Supabase introduces MFA support

hey HN, supabase ceo here<p>In case it&#x27;s not clear - MFA is Multi Factor Authentication, and this one is for you, the developer, to use within your own apps<p>The neat thing about this one is that it flows all the way through to the JWT so that you can use it in a Postgres Row Level Security Policy:<p><pre><code> create policy &quot;Enforce MFA for all end users.&quot; on table_name as restrictive to authenticated using ( auth.jwt()-&gt;&gt;&#x27;aal&#x27; = &#x27;aal2&#x27; ); </code></pre> You can see the `aal`, which is &quot;Authenticator Assurance Level&quot;. This is aal1 for &quot;no MFA&quot;, aal2 is 2 factor auth, etc...<p>A few of the team will be here to answer questions

Gotta love supa, always killing it

I&#x27;ve created also an issue on github[0] but didn&#x27;t get any reply yet. So, I&#x27;ll try here.<p>How to do Custom Authentication? For example, LDAP Auth is not possible in the current version. And I still don&#x27;t quite understand the API to implement it myself. Can you kindly provide me some pointers on how to do that? I don&#x27;t need LDAP specifically, but just a dummy custom authentication code?<p>0. <a href="https:&#x2F;&#x2F;github.com&#x2F;supabase&#x2F;supabase&#x2F;issues&#x2F;9958" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;supabase&#x2F;supabase&#x2F;issues&#x2F;9958</a>

Is this only TOTP, or will WebAuthn also be implemented?

congrats team! absolutely necessary for good security these days. filling out more and more of the PaaS role!

Is there an ETA on multitenancy support?