Magic Product Updates: December Edition
Happy holidays to the Magic community!
Since our last product update, we’ve launched a multifaceted set of capabilities that enable you to do more with Magic.
In this post, I’ll cover the latest highlights and improvements.
Developers can now enable multi-factor authentication (MFA) for your users! This capability allows customers to add a layer of security to their end-user accounts. This means a secondary factor is validated along with the existing primary factor to log in to an account. Typically, the primary factor is an email, and a secondary factor is a phone number or mobile device authenticator. The idea is that both factors will need to be compromised to breach an account.
The benefits of enabling MFA include:
- MFA reduces the risk of a compromised account or stolen NFTs by requiring users to provide multiple credentials to access their accounts.
- It protects users from theft. By requiring multiple authentication methods, MFA adds a layer of security from a stolen laptop or device.
- MFA is one of the most straightforward and robust security methods a developer can enable. Magic makes enabling MFA simple with one click in the dashboard.
- It helps your users meet regulatory compliance standards. You should enable MFA if your users must meet HIPAA, PCI, or CJIS compliance standards. Read: Magic offers enterprise-grade security, is SOC 2 Type 2, GDPR and CCPA compliant
Magic offers MFA through mobile authenticator apps like Authy or Google Authenticator. Email and SMS primary factors are currently supported. Magic will add WebAuthn, and social login primary factors support in the future. To get started, head to the dashboard and enable MFA or read more about the integration here.
Have you wanted to customize the sender of your email magic link login? With Magic, you can now route emails through your Simple Mail Transfer Protocol (SMTP) server. Enabling the custom email provider gives you complete control over where your app’s login email is sent from, as well as the name of the sender.
Magic will send email magic links through your SMTP server as soon as you configure the custom email provider. Disabling the custom email provider will restore sending emails from firstname.lastname@example.org. Magic’s custom email provider is compatible with leading SMTP servers. Please visit our docs for more information on how to get started.
We believe when it comes to building great apps, collaboration is critical. That’s why we are introducing Teams. Every Magic developer is given a personal team where you can invite up to two collaborators to help integrate Magic, update branding, or manage your users. As a collaborator, you will have access to any teams you have been invited to and your personal workspace.
Teams consist of two basic permission levels: a team owner and collaborators. The team owner has complete control over their account and is responsible for billing and managing team members. Collaborators have access to Dashboard functionality to collaborate on any project within the owner’s account. To add members to your project, head to your Magic Dashboard and look for My Team to get started.
SMS Login support has been expanded to our Mobile, Flutter, iOS, and Android SDKs! This release enables developers to easily integrate SMS Login to their applications on any of the supported platforms.
As 2021 comes to a close, I want to thank you for your support over this last year! At Magic, we are focused on helping our fast-growing developer community solve complex authentication, decentralized identity, and blockchain problems. So I want to invite you to join the Magic community on Discord, say hello, share product ideas and help others learn in this technology space.