Users & Authentication

Signing in your end users, MFA, and account recovery.

How do I set up MFA for my users?

Turn on multi-factor authentication for your project's users, choose an enforcement mode, and pick which second factors to allow.

How do I let users sign in with their phone number?

Enable SMS one-time-passcode sign-in so your users can authenticate with a verified phone number.

How does Forte handle authentication for me?

Every request to your service goes through Forte first, which validates the caller's session before your code runs. You get sign-up, sign-in (Google, email or…

How do I let users sign in with Google?

Configure your Google OAuth Client ID in your project settings, render Google's Sign-In button in your app, and pass the returned credential to Forte's…

How long do user sessions last?

Session tokens last 365 days by default. You can renew a token before it expires with any duration you choose, and calling the logout endpoint invalidates it…

What authentication methods does Forte support?

Forte supports email and SMS one-time-passcode sign-in, password-based sign-in, and Google OAuth out of the box. You can also turn on multi-factor…

How do I let users sign in with a password?

Turn on password login in your project's authentication settings, where you also set strength rules — minimum length plus optional uppercase, lowercase, digit,…