php2fa

Shared two-factor codes for your team — with roles and an audit trail.

  • Personal accounts — everyone signs in with their own password
  • Passwords stored only as salted hashes, never in the clear
  • Secrets encrypted at rest, and every change is logged

TOTP · RFC 6238 · PBKDF2-SHA256 · AES-256-GCM