Phishing-resistant operator console

Step up before you press the big red button.

Fortis is the operator console for the actions you don't want to rubber-stamp. Every privileged action is gated by a hardware authenticator — no exceptions, no SMS fallback.

⌗

WebAuthn-only

Hardware security keys. No SMS, no email codes.

⌖

Step-up per action

Each high-risk action triggers a fresh assertion.

⚯

Magic-cookie bypass

Operator-only escape hatch for automated test rigs.

☷

Replay-resistant

One-shot challenges with rp-bound origin checking.

Automated pre-flight is unsupported

No silent fallbacks. Fortis cannot be signed into by an automated authenticator — a physical key is required. Operators can use the explicit magic-cookie bypass via POST /admin/issue-magic-cookie for test rigs.