Hello,
I noticed that no one seems to be posting feedback, so here’s one!
First of all, thank you for the great work you are doing with Cerber. I appreciate the robustness of your security solution, but I would like to share some suggestions that could enhance the 2FA experience and usability for end users.
One-Click Backup Codes for End Users Focusing on email-based 2FA
Currently, the 2FA system does not offer backup codes for end users. Here’s a feature that could be beneficial:
One-click generation of 10 (or 5) backup codes that users can use as a bypass in case they lose access to their primary authentication method.
Each code is single-use and can be regenerated at any time by the user.**
- Configurable expiration period (unlimited, 3 months, 6 months, 1 year, etc.).
##Better user experience** to prevent lockouts due to 2FA issues.
White-Label Customization for 2FA
Currently, the 2FA UI/UX in Cerber is not fully user-friendly and customizable.
A white-labeling option would allow businesses to tailor the 2FA interface to match their branding and integrate it seamlessly into their environment.
To achieve this, only a few small improvements are necessary to make it more accessible for both non-developer professionals and friendly users:
Basic color and link customization
Font size adjustments
Built-in translations like in other Cerber features
With just these simple changes, 2FA would feel more integrated and professional without adding unnecessary complexity.
Additionally, it is crucial to ensure proper accessibility when implementing UI changes. The web is also a space that must remain inclusive for people with disabilities. Taking care of HTML semantic structure and accessibility tags (ARIA, labels, proper contrast ratios) would allow 2FA to be truly universal.
Frontend 2FA Integration
The ability to implement 2FA authentication directly on the frontend, rather than limiting it to the WordPress admin panel.
This would significantly enhance the experience for community sites, marketplaces, or SaaS platforms running on WordPress.
The Strength of Cerber’s 2FA and Its Unique Implementation
As a developer, I see the great strength of Cerber’s 2FA system in how it granularly integrates user rights and throttle control. Unlike other solutions, Cerber does not dissociate access control from security, making it both highly secure and seamlessly integrated into the existing permission structure.
Another major advantage of Cerber’s approach is its modular yet enforced implementation—there is no need to ask users if they want 2FA; it can be made mandatory without complex configuration. This modularity is a key strength, and expanding it further would only increase the product’s value.
The Need for Bypass Codes in the Era of AI, Cloud, and Unstable Email Providers
In today’s landscape—where AI, cloud solutions, and third-party providers often introduce unexpected failures—having a bypass solution is no longer a convenience but a necessity.
Many providers suffer from temporary downtime, affecting email deliverability and causing login issues.
- A failed 2FA verification due to email unavailability can lead to unwanted account lockouts and frustration.
- Allowing users to have pre-generated backup codes ensures a smooth authentication flow without compromising security
A More Realistic Approach to 2FA for Non-Developers
It is important to acknowledge that most non-developers do not use classic SSO systems or mobile token generators.
- The adoption of these systems is still limited, and by the time they become mainstream, the technology itself might be outdated.
- For a more accessible and user-friendly experience, email-based 2FA remains the most widely used method in modest and friendly systems.
- Providing a strong yet simple 2FA experience ensures that security is enforced without alienating the majority of users.
I believe these improvements would add great value to your solution and further enhance security while making the user experience much more intuitive.
Looking forward to your feedback!