2FA : login does not trigger the SMS code send

[ferllings]

When the 2FA is used, the SMS code is not sent, when the login function is executed.

http://github3py.readthedocs.org/en/master/examples/two_factor_auth.html

After some testing with the api, the code is only sent when calling the authorizations url with PUT method:
curl -X PUT -v -u : https://api.github.com/authorizations

[sigmavirus24]

Is this documented anywhere on https://developer.github.com/? If not, then file a bug with the API because that's the single source of truth for this project.

[ferllings]

Found some traces here: mislav/hub#435

[sigmavirus24]

Is this documented anywhere on https://developer.github.com/? If not, then file a bug with the API because that's the single source of truth for this project.

[ferllings]

Thanks,

Where is the bug tracking for the API? I can't find it

[sigmavirus24]

From https://developer.github.com/v3/

This describes the resources that make up the official GitHub API v3. If you have any problems or requests please contact support.

[ferllings]

Here is the answer:
"Yeah, that's expected behavior for now -- if your using Basic Auth to authenticate and are using 2FA with SMS, the API will send 2FA SMSes with OTPs only for API requests to create tokens. This allows you to use the Authorizations API to create an OAuth token. If you're using other APIs and have 2FA enabled, you should authenticate using an OAuth token (instead of with username+password) because using an OAuth token doesn't require you to enter an OTP when making API calls. "

[sigmavirus24]

@ferllings, since this is "expected behaviour" are you okay with me closing this?

[ferllings]

Yes, I suppose