What's New in the SAFHIR Registration Portal
Each release card below summarises a feature shipped to the portal. Click a card to see the full step-wise guide explaining what the user sees and what the system does at every step.
v3.0
Live
Multi-Factor Authentication (MFA)
SMS-based MFA powered by Twilio Verify, applied across registration, login and profile updates. Every user must verify their mobile number before MFA is activated on their account.
- OTP-verified registration with mandatory phone number
- Login challenge with method selection (SMS / Email / Call)
- Profile phone-change requires re-verification before save
- Rate-limiting, lockout and resend cooldown handled server-side
Release v3.0
View full flow
v3.1
New
Authenticator App (TOTP)
Stronger, phishing-resistant second factor using Google Authenticator, Authy or any TOTP app. TOTP is opt-in from the profile and becomes a faster alternative to SMS at login.
- Enrol from the profile by scanning a QR code (auto-blurred after 30s)
- Confirm with a 6-digit code from the authenticator app
- Pick TOTP or SMS at login for users who have both enabled
- Remove the authenticator at any time; account safely falls back to SMS
Release v3.1
View full flow