OTPAuth
One Time Password (HOTP/TOTP) library for Node.js and browsers.
Installation
Install the module via npm
.
npm install otpauth
Usage
Node.js
import * as OTPAuth from 'otpauth';
let totp = new OTPAuth.TOTP({
issuer: 'ACME',
label: 'AzureDiamond',
algorithm: 'SHA1',
digits: 6,
period: 30,
secret: 'NB2W45DFOIZA' // or "OTPAuth.Secret.fromB32('NB2W45DFOIZA')"
});
// Generate TOTP token.
let token = totp.generate();
// Validate TOTP token.
let delta = totp.validate({
token: token,
window: 1
});
// Convert to Google Authenticator key URI.
// otpauth://totp/ACME:AzureDiamond?issuer=ACME&secret=NB2W45DFOIZA&algorithm=SHA1&digits=6&period=30
let uri = totp.toString(); // or "OTPAuth.URI.stringify(totp)"
// Convert from Google Authenticator key URI.
let parsedTotp = OTPAuth.URI.parse(uri);
Browser
<script src="otpauth.umd.js"></script>
<script>
// Same as above...
</script>
Documentation
See the documentation page.
Supported hashing algorithms
In Node.js, the same algorithms as Crypto.createHmac
function are supported, since it is used internally.
In browsers, the SHA1
, SHA256
and SHA512
algorithms are supported by using the Stanford Javascript Crypto Library.