Hey there,
We had a discussion about this on RbxDev. And I decided to make it a Feature Request for the Web team 
Before we start :
- This idea is fully optional. If you don’t like this idea because you don’t a mobile phone for example then it will never be forced on you !
- The ‘system’ of this idea is already implented in ROBLOX. (Moderators and other ROBLOX admins) need to login with Two-factor to access there account.
[size=4]Concept[/size]
[i]Allow us to connect our mobile phones to ROBLOX[/i]. We would like a system where we can decide for wich operations a PIN (that you will get on your mobile) needs to be inserted to execute.
How should it work :
‘You do operation ‘X’, the mobile that you connected to your account will receive a SMS of ROBLOX that contains a unique code that needs to be inserted to do operation ‘X’’
Example of operations
[ol]
[li]Login[/li]
[li]Edit a Place[/li]
[li]Do purchases that are worth more then ‘X’% of your total wealth. So if you have 500 RS, you won’t be able to spend more then ‘X’% without the PIN.[/li]
[li]Leave a Group. Let’s say you own a really unique clan and someone got your account, then it would be great to have a PIN to be inserted instead of being kicked out. [/li]
[li]Trading[/li]
[/ol]
Who will benifit from this :
- Wealthy Users
- Developers
- All other Users, since they feel more safe.
Summary : A way to connect our mobile phones to ROBLOX and decide on wich type of operation we wish to receive a SMS from ROBLOX, with a unique code that needs to inserted to do the operation.
I don’t want codes sent at operation; I want a code sent when I login. I would be fine with 2 step verification like Google’s.