We've added One-Time Password (OTP) verification to protect sensitive operations in Makerkit, giving your users an extra layer of security. Instead of just asking users to type a confirmation, they'll now receive a unique code via email that expires after use.
For technical information, check out the OTP API documentation.
What's new?
- Postgres-powered OTPs: Built directly into your Supabase database - no external services needed!
- Email verification: New email template for sending OTP codes
- Protected operations: Secure account deletion, team deletion, and ownership transfers
- Developer-friendly API: Simple interfaces to implement OTP verification anywhere in your app
Protected operations
OTP verification now secures these critical actions:
- Personal account deletion
- Team account deletion
- Team ownership transfer
- ... ability to extend your own custom operations
Easy to use in your custom features
We've designed this system to be incredibly simple to reuse throughout your application: