I keep my all passwords in firefox. SMS is insecure for 2-FA. Having to install second app for 2fa is cumborsome. If this can be done securely, it would be best if TOTP codes could be managed via Lockwise, giving it feature parity with standalone password managers.
Thanks for submitting an idea to the Mozilla Connect community! Your idea is now open to votes (aka kudos) and comments.
@dineshdb that is a good suggestion! I've filed a Bug 1773857 to implement this. Can't promise anything at this moment, but we will consider it for sure!
Authentication applications are compatible with each other, so if you have one you already use, you may be able to use it. Note that I have confirmed that Microsoft Authenticator can be used. However, I cannot promise that this method is secure.
@Anonymousthis one is about firefox itself acting as a replacement for Microsoft Authenticator. Since the data in Firefox servers are end to end encrypted, it can safely act as a sync for TOTP secrets.
We could have the browser autosuggest the TOTP when the input box appears as well just like passwords.
The best process I've found for TOTP (two-factors authentification codes) is replacing Google Authentificator with Twilio Authy app because it allows syncing your accounts across multiple desktop and mobile devices for 2FA.
To avoid data loss I store backup codes in Firefox passwords with a specific label.
It would be great to integrate all of this in FF just like 1Password does
I'm the original author of this idea. And I think, Firefox supporting passkeys (passwordless is the future) is the way to go forward. Passkeys are like TOTP but for the first factor and automated and less error-prone. There is no fishing and a chance of user error. Hence, focusing on passkeys should be the number one priority.
I think passkeys are the future. Please go and upvote the passkeys idea: https://connect.mozilla.org/t5/ideas/support-webauthn-passkeys/idi-p/14069