DEV Community

Carrie
Carrie

Posted on

I Implement 2FA on My Website with SafeLine WAF

#2fa #website #homelab #webfirewall

Two-Factor Authentication (2FA) is one of the most effective ways to enhance the security of user logins. By requiring both a password and an additional verification factor, 2FA reduces the risk of credential theft and brute-force attacks.

In this guide, we will walk through how you can leverage SafeLine WAF to add an extra layer of protection and implement 2FA for your website.

Why Add 2FA with SafeLine?

While most websites already use a username and password combination, this method alone is often not sufficient against modern cyberattacks. SafeLine WAF helps by:

  • Blocking brute-force login attempts before they reach your backend.
  • Adding an anti-bot challenge to ensure login requests are from real users.
  • Integrating with third-party authentication flows to support 2FA mechanisms such as TOTP (Google Authenticator) or SMS/Email verification.
  • Creating custom rules to enforce 2FA only on sensitive endpoints (e.g., /login, /admin).

Step 1: Deploy SafeLine in Front of Your Website

First, make sure your website traffic is routed through SafeLine WAF. You can deploy SafeLine and configure your websites by following these guides:
https://docs.waf.chaitin.com/en/GetStarted/Deploy
https://docs.waf.chaitin.com/en/GetStarted/AddApplication

Step 2: Enforce 2FA Policy in Auth

Go to Auth -> USER MANAGEMENT -> Add User

Fill in the User info and check the box: Force Enable TOTP -> Create, then Done!

Conclusion

By combining SafeLine WAF’s intelligent traffic filtering with a 2FA mechanism, you can significantly strengthen your website’s security posture. SafeLine not only mitigates bot-based attacks but also enforces that login attempts include a verified second factor, reducing the risk of compromised credentials.

If you want to see SafeLine in action, check out the official documentation and try deploying it on your own environment — setup only takes a few minutes.

SafeLine Website: https://ly.safepoint.cloud/ShZAy9x
Live Demo: https://demo.waf.chaitin.com:9443/statistics
Discord: https://discord.gg/dy3JT7dkmY
Doc: https://docs.waf.chaitin.com/en/home
https://docs.waf.chaitin.com/en/GetStarted/Deploy
Github: https://github.com/chaitin/SafeLine

Top comments (0)