ToRouter DocsTwo-factor auth (TOTP)
Add a TOTP code from an authenticator app on top of your password.
ToRouter supports time-based one-time passwords (TOTP) as a second factor on login. Use any standard authenticator app — Google Authenticator, 1Password, Authy, Bitwarden, Raycast, etc.
Enable TOTP
Open the profile page
In the console, go to Profile and find the Two-factor authentication section. Click Enable.
Confirm it's you
Enter:
- A 6-digit email verification code (click the inline send button to receive it).
- Your current password.
This step prevents a stolen session from binding a new authenticator without your consent.
Scan the QR code
The setup dialog shows a QR code and a text secret. Open your authenticator app and scan the QR, or paste the secret manually.
The app will start showing a fresh 6-digit code every 30 seconds.
Save your recovery codes
The dialog also shows one-time recovery codes. Store them somewhere safe (password manager, encrypted note). Each code works once and is the only way back in if you lose the authenticator.
If you lose both the authenticator app and the recovery codes, you cannot recover the account yourself. Treat the recovery codes like backup keys.
Confirm with a live code
Type the 6-digit code currently shown in the app and submit. TOTP is now active on your account.
Sign in with TOTP
After password login, you'll be prompted for the 6-digit code. Enter the current value from the app — if you mistype, just wait for the next 30-second cycle and try again.
If you've lost access to the app, click Use a recovery code and paste one of the codes you saved.
Disable TOTP
In Profile → Two-factor authentication, click Disable. You'll need to re-enter your current password and a fresh 6-digit code (or a recovery code) to confirm.
After disabling, login reverts to password-only. Your API keys are unaffected.