API Authorization, cookies, and 2FA

I want to build an internal app that accesses an API for a SaaS App that normally requires a web browser login and entry of a 2FA code via authenticator app. The SaaS App then sets two auth cookies on the browser that it requires for every subsequent request in the user's session.

Is it possible to build this with retool, including the 2FA portion? If not, can the user complete the 2FA login via a separate browser tab and then capture the cookies for use in retool? I know retool can handle cookies for APIs, but I'm not sure about the 2FA part.

Hi @tman , welcome,

This should be possible using a resource with Oauth authentication or otherwise custom auth. But it depends on the capabilities of the resource you’re connecting to.

1 Like