Inspiration
Traditional WordPress authentication relies on SMS and email verification, but this approach doesn't align with user preferences in Latin America. Over 90% of internet users in this region communicate primarily through WhatsApp, making them more likely to respond to and trust messages delivered through their preferred platform rather than unfamiliar SMS numbers or email addresses.
What it does
This WordPress plugin provides two-factor authentication using Vonage's Verify API to send SMS verification codes during login. Users enable 2FA in their profile settings, and when they log in, they receive a verification code via SMS that must be entered to complete authentication.
How we built it
I developed a working Python prototype first to validate the API integration and ensure proper functionality. Using this proven foundation, I leveraged Claude Sonnet through Cursor IDE to help implement the WordPress plugin architecture. The plugin uses Vonage's Verify API endpoints, includes comprehensive error handling, session management, and a clean administrative interface for configuration.
Challenges we ran into
The primary constraint was time. While I successfully implemented SMS authentication, my original vision included WhatsApp integration, which required a WhatsApp Business account setup that couldn't be completed within the hackathon timeframe. Additionally, debugging the API integration and ensuring proper WordPress security practices took longer than anticipated.
Accomplishments that we're proud of
I delivered a fully functional WordPress 2FA plugin in just one day that addresses real security needs. The plugin includes production-ready features like proper session management, phone number validation, comprehensive error handling, and an intuitive user interface. Most importantly, it works reliably with Vonage's API where previous implementations had failed.
What we learned
This experience reinforced that complex technical challenges are achievable with focused effort and the right approach. Breaking the problem down into a working prototype first, then building the full implementation, proved invaluable. The collaboration with the Vonage team during debugging was instrumental in identifying and resolving API integration issues. Time management remains crucial in hackathon environments - having a clear minimum viable product helps prioritize features effectively. The key insight was understanding that sometimes the most impactful solution isn't the most complex one - a reliable SMS-based 2FA system serves immediate security needs while laying groundwork for future WhatsApp integration.
Log in or sign up for Devpost to join the conversation.