/Docs

Two-Factor Authentication

Two-factor authentication (2FA) adds a second step to your login process. Even if someone learns your password, they cannot access your account without also having access to your email. Enabling 2FA is one of the most effective things you can do to protect your account.

What is two-factor authentication?

When you log in with 2FA enabled, you go through two separate checks:

  1. Something you know — your email and password.
  2. Something you have — a one-time verification code sent to your email inbox.

Each time you log in, A vs B sends a unique 6-digit code to your registered email address. The code expires after 10 minutes and can only be used once. Because an attacker would need access to both your password and your email inbox, 2FA significantly reduces the risk of unauthorized access.

Enabling 2FA

1

Open Account Settings

Click your avatar or initials in the bottom-left corner of the sidebar, then click Account Settings.
2

Go to the Security tab

Click the Security tab at the top of the Account Settings page.
3

Enable 2FA

Find the Two-Factor Authentication section and click the toggle switch. A verification modal will appear.
4

Check your email

A vs B sends a 6-digit verification code to your registered email address. Open your inbox and find the email from A vs B. The code expires after 10 minutes.
5

Enter the verification code

Type the 6-digit code into the verification field in the modal and click Verify & Enable. This step confirms that you can receive codes at your email address.
6

2FA is now active

After successful verification, A vs B confirms that 2FA is enabled on your account. From this point forward, every login will require a code sent to your email.
Make sure you have access to your email
If you lose access to your registered email address, you may be locked out of your account. Make sure your email account is secure and that you have recovery options set up for it.

Logging in with 2FA enabled

Once 2FA is active, the login flow has an extra step:

1

Enter your email and password

Log in at app.avsb.cloud/login as usual. Enter your email address and password and click Log in.
2

A code is sent to your email

After your password is verified, A vs B automatically sends a 6-digit code to your registered email address. You are redirected to the verification page.
3

Enter the code from your email

Open your inbox and find the code. Type it into the verification field and click Verify & Continue. Codes expire after 10 minutes — if your code expires, click Resend Code to get a new one.
4

You are logged in

After the code is verified, you are taken to your A vs B dashboard as normal.

Disabling 2FA

To turn off two-factor authentication:

  1. Open Account Settings → Security.
  2. Find the Two-Factor Authentication section and click the toggle switch to turn it off.
  3. A confirmation dialog will appear. You will be asked to enter your current password to confirm the action.
  4. Enter your password and click Disable 2FA. 2FA is now disabled. Your next login will only require email and password.
Not available for Google login
Two-factor authentication is only available for accounts that use email and password to log in. If you sign in with Google, authentication security is handled by Google — you can enable 2FA in your Google account settings instead.
Recommended for all users
A vs B strongly recommends enabling 2FA on every account, especially for team members with Admin, Developer, or Owner roles. These accounts have the ability to publish code that runs on your live website.