Home

Features

Multifactor authentication (MFA)

Multifactor authentication (MFA)

Multifactor authentication (MFA)

Multifactor authentication (MFA)

Apr 19, 2024

Apr 19, 2024

15.5.0

24.0.0

Generate real MFA tokens inside your automation tests. Test 2FA flows without workarounds, shared codes, or broken login steps.

Generate real MFA tokens inside your automation tests. Test 2FA flows without workarounds, shared codes, or broken login steps.

Test MFA-protected logins without hacks

Modern applications rely on multi-factor authentication.

Your automated tests should not break because of it.

DoesQA lets you generate real MFA tokens directly inside your automation tests, so protected login flows run reliably without manual intervention.

No bypassing security.

No disabling MFA in staging.

No sending codes around in Slack or Teams.

Use DoesQA as your MFA provider

With the Set MFA node, DoesQA can act as a 2FA provider within your tests.

You can:

  • Generate valid time-based one-time passwords

  • Store and reuse MFA secrets globally

  • Use MFA at any stage of any test

  • Apply the same setup across multiple flows

This means your test users can behave exactly like real users, including those with MFA enabled.

Test every user type in one flow

Because DoesQA supports branching, you can test:

  • Guest users

  • Returning users without MFA

  • New users without MFA

  • Returning users with MFA

  • New users setting up MFA for the first time

In the same flow.

Your tests can even perform the full journey of:

  1. Registering a new user

  2. Setting up MFA

  3. Capturing and storing the MFA secret

  4. Generating live tokens so you can log out and log back in

This allows complete coverage of real-world authentication scenarios without duplicating flows.

Capture MFA secrets automatically

MFA setup often displays a secret or QR code. DoesQA supports both approaches:

  • Capture the secret directly if shown on screen

  • Use the Scan node to read a QR code and extract the secret automatically

From there, DoesQA generates real tokens during execution.

OTP via email

In addition to authenticator-based MFA, DoesQA also supports one-time passwords delivered via email.

This allows you to automate email-based 2FA flows without leaving the platform.

Built for automation and manual testing

When reviewing test results, developers can generate a fresh MFA token directly from the result view to continue debugging without interruption.

Manual testers can log in as shared test users without passing authentication codes back and forth.

Everyone works faster, with less friction.

Secure, reliable, and realistic

MFA should increase confidence, not block automation.

DoesQA lets you test real authentication flows exactly as users experience them, while keeping your automation reliable and maintainable.