Skip Navigation

Games @lemmy.world

moe90 @feddit.nl

5d ago

You can now use authenticator apps to keep your GOG account secure!

You can now use authenticator apps to keep your GOG account secure!

GOG @lemmy.world

RmDebArc_5 @sh.itjust.works

4d ago

You can now use authenticator apps to keep your GOG account secure!

www.gog.com /news/you_can_now_use_authenticator_apps_to_keep_your_gog_account_secure

Games @lemmy.world

who @feddit.org

4d ago

You can now use authenticator apps to keep your GOG account secure

www.gog.com /news/you_can_now_use_authenticator_apps_to_keep_your_gog_account_secure

40 comments

Thanks for this. Long overdue from GOG.
- Their platform is really outdated. Can’t even edit or remove a game review without contacting support. It’s dumb. They’re losing precious time because of this
  
  We can’t even edit the cookies section in their app or website and GOG is EU company btw, it’s bonkers!
  
  EDIT: Not sure what I meant for "precious time"
  
  the store is a losing proposition right now from CDPR perspective. I am just happy to have a different place I can buy games that's not steam
  
  Do you consider Itch.io to be a viable platform ??

FINALLY

Thanks, immediately went to set it up. No issues. Also works properly in combination with keepassxc's TOTP feature.

It's about time!

Now when will Steam do this?
- They do. Just not 3rd party.
- Idk why people think they cant add steam, i have it in my Aegis app.
  
  How? I can't get it to give me the TOTP key, it just asks me to download their stupid app.
  
  How did you manage? Thought steam 2fa was tied to steams app?
- What does GOG's 2FA do that Steam's 2FA doesn't?
  
  At a glance (haven't enabled yet, will later today), GoG uses the RFC standard TOTP model. This means you can use whatever app you want whether that is the google authenticator that ties it to your cloud account, something related to your password manager (e.g. keepass or bitwarden), or even just a python script you have in a random directory. It gives you control of your 2FA and protects you in the event you lose a device without properly de-authenticating it.
  Valve use their own model that, to my knowledge, is only accessible through the Steam mobile app. Which is a huge nightmare if you ever have a device stolen/damaged (and is why you back up the recovery code)
  Just enabled. Yup, bog standard TOTP and they even provide the plaintext key so that I don't have to extract it from a QR code.
  
  It ~~presumably~~ works with a normal TOTP app.
  E: confirmed it works
  
  Unless I’m missing something, Steam only does code to email 2FA, not an actual TOTP app

Does it still work with Heroic and Lutris?🤔

About time

Thanks, and added.
Although it would have been nice if I could "upgrade" from email based 2step instead of having to disable it.

2FA (Time-based One-Time Password) login
Gog, how are you even securing accounts? You mean securing access to accounts through 3rd party TOTP, which again, isn't sessioning access authenticatively. We already invented that.

40 comments