PhoneFactor is a WordPress plugin that provides an additional layer of security when logging in to your WordPress site.
It’s a pretty cool system. When you log in to your WordPress blog with PhoneFactor enabled, you receive a phone call asking you to press # to authorize. When you do so, you are logged in. If you do not, then the login attempt fails.
Basically, this means someone needs to get your username, password and phone in order to log in to your WordPress site as you.
Crowd Favorite worked with the PhoneFactor team to build this integration on their API layer. This was a fun project for us – it’s always nice to enhance WordPress by integrating features from another service.
Besides building the integration with the API to authenticate via phone, we also built the PhoneFactor registration step right into the WordPress admin so that the user wouldn’t have to leave the WordPress admin when activating the plugin and getting it set up. I think it’s a much better user experience.
We integrated some instructional banners into the WordPress admin pages to let people know the next steps to getting things set up after activating the plugin. We also built in some more advanced user features like whitelisting IP addresses so that you don’t have to use PhoneFactor authentication if you’re logging in from your home machine.
The download and more information are available at the WordPress Plugin repository on wordpress.org.