15% off your workspace - subscribe to our blogNo per-service fees - one plan, unlimited appsDeploy in under 40 seconds99.95% uptime SLAFree tier available - start building today15% off your workspace - subscribe to our blogNo per-service fees - one plan, unlimited appsDeploy in under 40 seconds99.95% uptime SLAFree tier available - start building today
App DeploymentManaged DatabasesPreview AppsAutoscalingShared StorageRegionsMigetpacksFair SchedulerGitHub IntegrationSSH AccessApplication CloningMiget vs HerokuMiget vs RenderMiget vs RailwayMiget vs Fly.ioSee all comparisons
DocumentationAPI ReferenceFAQMigration GuidesOSS ProgramReferral ProgramRoadmapRelease NotesChangelogPress & MediaStatusDiscordGitHub
Miget x AIPlansEnterpriseCompareBlogDashboard
Start for Free
Platform
App DeploymentDeploy from Git or Docker in secondsManaged DatabasesPostgreSQL, MySQL, Redis built inPreview AppsAutomatic environments for every PRAutoscalingScale up and down automaticallyShared StoragePersistent volumes across servicesRegionsGlobal infrastructure locations
Features
MigetpacksZero-config builds for 14+ languagesFair SchedulerSmart CPU sharing across all appsGitHub IntegrationPush to deploy, PR previewsSSH AccessDirect shell access to containersApplication CloningDuplicate apps in one click
Compare
Miget vs HerokuA modern alternativeMiget vs RenderA better value platformMiget vs RailwayA better platform for your appsMiget vs Fly.ioA simpler alternativeSee all comparisons
Resources
DocumentationGuides and referencesAPI ReferenceREST API for your infrastructureFAQCommon questions answeredMigration GuidesMove your apps to MigetOSS ProgramFree compute for open sourceReferral ProgramEarn 30% credits for referrals
Community
RoadmapSee what's nextRelease NotesWhat's new in MigetChangelogPlatform updatesPress & MediaBoilerplate, founders, logosStatusSystem uptimeDiscordJoin the communityGitHubOpen source repos
Blog
Apr 28, 2026Two-Factor Authentication and Workspace Enforcement Are LiveProtect your Miget account with TOTP-based two-factor authentication. Workspace admins can now require it across the team, with a configurable grace period of up to 30 days.Apr 18, 2026Observability Is Live: Metrics, Logs, and Grafana DashboardsReal-time CPU, memory, and traffic metrics, streamed build and request logs, and pre-built Grafana dashboards are now built into every Miget app. No external monitoring service required.Apr 7, 2026How to Deploy a Python Celery Worker on MigetLearn to deploy a Python web app and a Celery background worker on Miget. Run both services within a single Resource plan, with no per-service billing.
All articles
Blog/Release Notes/Miget/
April 28, 2026·4 min read

Two-Factor Authentication and Workspace Enforcement Are Live

Miget Team

Two-factor authentication is now available on every Miget account, and workspace admins can enforce it across all members of their workspace. If you run production workloads on Miget, this is the lowest-effort, highest-impact security upgrade you can make today.

What shipped

  • Personal two-factor authentication for every account, using any TOTP app (1Password, Bitwarden, Google Authenticator, Microsoft Authenticator, Authy, and any RFC 6238 authenticator).
  • Recovery codes generated at enrollment, so you keep access if you lose your device.
  • Workspace-wide enforcement that workspace admins can toggle on. Members without two-factor authentication enabled are prompted to enroll.
  • Configurable grace period: enforcement can take effect immediately, or in 3, 7, 14, or 30 days, so teams have time to roll out without locking anyone out.
  • Aggregate enrollment count in the workspace Security panel so admins can see how the rollout is progressing.

Why it matters

Account-level security is the boring kind of feature that becomes important the moment you wish you had it. Compromised passwords are still the most common path to a hijacked workspace, and a phished credential without a second factor is enough to deploy malicious code or read environment variables.

Two-factor authentication closes that path. Workspace enforcement gives admins a clean way to apply it across the whole team without policing it manually.

How to enable it on your account

  1. Open your account settings on app.miget.com.
  2. Open the Security tab.
  3. Click Enable two-factor authentication.
  4. Scan the QR code with your authenticator app, enter the 6-digit code to confirm, and save the recovery codes that Miget shows you.

The next time you sign in, Miget will ask for the rotating code after your password.

How to enforce it across a workspace

  1. Open the workspace and go to Settings > Security.
  2. Find the Two-Factor Authentication Enforcement section and toggle it on.
  3. Pick an Enforcement timing: Immediately, In 3 days, In 7 days, In 14 days, or In 30 days. The timing is the grace period members have to enroll before they are blocked.
  4. Click Update.

The same panel shows an aggregate enrollment count so you can pick a grace period that gives the rest of the team time to set things up. Members who do not enroll within the grace period are blocked from workspace resources until they do.

Technical details

Enrollment uses the standard TOTP algorithm (RFC 6238) so any compliant authenticator app works. Recovery codes are single-use and consumed on use; you can regenerate the full set at any time. Workspace enforcement does not remove anyone's existing enrollment when toggled off - members remain enrolled on their own accounts until they disable it themselves.

Get started

Two-Factor Authentication and Workspace Enforcement Are Live - Miget Blog | Miget