Set up two-factor authentication

SleeveFolio uses TOTP — the standard 6-digit codes from an authenticator app (1Password, Google Authenticator, Authy, and friends). 2FA protects every sign-in once enrolled, and it’s one of the two safety checks the Paper → Live gate requires.

1. 1
   Scan the QR code

   Open Settings → Account and start enrollment on the two-factor card. A QR code appears — scan it with your authenticator app (or type the setup key in manually).
2. 2
   Verify a code

   Type the 6-digit code your app shows. This confirms your app was set up correctly before 2FA is switched on.
3. 3
   Store your recovery codes

   Ten one-time recovery codes appear, once. Download or copy them somewhere safe — they’re your way in if the authenticator device is lost. Details in Recovery codes.

What changes after enrollment

• Every sign-in — magic link, Google, GitHub — is challenged for a code before you’re signed in
• Sensitive actions (enabling live trading, saving broker keys) ask for fresh 2FA verification before they go through — the check happens on SleeveFolio’s side, so it can’t be skipped
• The gate’s 2FA check turns green

Disabling 2FA

Turning 2FA off requires your current TOTP code and re-authentication — and it immediately fails the live-trading gate. If you’re live, expect to be back on paper until you re-enroll.