Two-factor authentication (2FA) adds an extra layer of security by requiring a second piece of proof — beyond your password — before you can access your account. SoroSoke uses phone number OTP (One-Time Password) as its second factor.
How SoroSoke uses 2FA
When you sign up or sign in with a phone number, the OTP sent to your device acts as both your authentication method and your second factor. Even if someone knows your phone number, they cannot sign in without physical access to your SIM card to receive the SMS code.
For email and password accounts, 2FA via your linked phone number can be triggered for sensitive actions — such as account deletion — where SoroSoke requires additional verification of your identity.
When 2FA is required
- Phone sign-in — every sign-in via phone number requires OTP verification.
- Account deletion — phone-only accounts must verify via OTP before permanently deleting the account.
- Sensitive account changes — certain account modifications trigger OTP verification as an identity check.
Troubleshooting OTP delivery
OTP not received
- Ensure your phone has an active mobile data or signal connection.
- Double-check that you entered the correct phone number with the full country code (e.g.
+2348012345678). - OTP messages can occasionally take up to 2 minutes to arrive. Wait before requesting a resend.
- Check that your SIM card is not blocked from receiving SMS from premium-rate or shortcode numbers.
OTP expired
OTP codes expire after 10 minutes. If your code has expired, tap Resend to request a fresh code (available after a 60-second cooldown).
SoroSoke uses phone OTP because mobile phone numbers are strongly tied to a user's real identity in Nigeria, providing a practical and widely accessible form of two-factor verification without requiring a separate authenticator app.