Back to Help Center

Two-factor authentication (authenticator app)

Add a second step at sign-in using a time-based code from an app like Google Authenticator, 1Password, or Authy.

Turn on MFA

  1. Open Settings → Security.
  2. Click Set up authenticator.
  3. Scan the QR code with your app, or enter the secret key manually.
  4. Enter the 6-digit code from the app to confirm.
  5. Save your recovery codes somewhere safe. Each code works once if you lose your phone. We only show them once.

Signing in

After you enter your email and password (or complete Google sign-in), you will be asked for an authenticator code or a recovery code. This applies to both password and Google sign-in.

Email notifications

We send a message to your account email when MFA is turned on or off. If you did not make the change, secure your account and contact support@taskspot.app.

API keys

Two-factor authentication protects web sign-in only. API keys are separate: anyone with a valid key can use the API. Keep keys secret and revoke them if they leak.

Turn off MFA

In Settings → Security, use Turn off MFA. If you sign in with a password, you will confirm with your password. If you use Google only (no TaskSpot password), you will confirm with a code from your authenticator app.