This application example demonstrates how to implement Two-Factor Authentication on a Python Flask application using Authy OneTouch.
Create a free Authy account if you haven't already done so and then connect it to your Twilio account.
Create a new Authy application. Be sure to set the OneTouch callback
http://your-server-here.com/authy/callback once you've finished
configuring the app.
This project is built using the Flask web framework. For now it only runs on Python 2.7 (not 3.4+).
To run the app locally, first clone this repository and
cd into it.
Create a new virtual environment.
Install the requirements.
pip install -r requirements.txt
.env_example file to
.env, and edit it to include your Authy API key
source .env to apply the environment variables (or even better, use autoenv)
Start a local PostgreSQL database and create a database called
If on a Mac, we recommend using Postgres.app. After installing it, open psql and run
CREATE DATABASE 2fa_flask;
If Postgres is already installed locally, you can just run
createdb 2fa_flask from a terminal
Run the migrations.
python manage.py db upgrade
Start the development server.
python manage.py runserver
To actually process OneTouch authentication requests, your development server will need to be publicly accessible. We recommend using ngrok to solve this problem.
Once you have started ngrok, set your Authy app's OneTouch callback URL to use your ngrok hostname, like this:
You can run the tests locally through coverage:
Optionally create a separate test database and update your
DATABASE_URL environment variable if you don't want your development data overwritten.
Run the tests.
$ coverage run manage.py test
You can then view the results with
coverage report or build an HTML report with