Thanks for this. Long overdue from GOG.
Now when will Steam do this?
They do. Just not 3rd party.
What does GOG’s 2FA do that Steam’s 2FA doesn’t?
At a glance (haven’t enabled yet, will later today), GoG uses the RFC standard TOTP model. This means you can use whatever app you want whether that is the google authenticator that ties it to your cloud account, something related to your password manager (e.g. keepass or bitwarden), or even just a python script you have in a random directory. It gives you control of your 2FA and protects you in the event you lose a device without properly de-authenticating it.
Valve use their own model that, to my knowledge, is only accessible through the Steam mobile app. Which is a huge nightmare if you ever have a device stolen/damaged (and is why you back up the recovery code)
Just enabled. Yup, bog standard TOTP and they even provide the plaintext key so that I don’t have to extract it from a QR code.
It presumably works with a normal TOTP app.
Unless I’m missing something, Steam only does code to email 2FA, not an actual TOTP app
deleted by creator
It’s about time!
FINALLY
Thanks, immediately went to set it up. No issues. Also works properly in combination with keepassxc’s TOTP feature.
