Questions tagged [totp]
Time-based One-Time Password algorithm (TOTP) is an algorithm that computes a one-time password from a shared secret key and the current time.
totp
187
questions
0
votes
1
answer
36
views
Algorithm two factor authentification not working
I tried to build my own 2FA application with VB.NET, according to RFC 6238 (https://datatracker.ietf.org/doc/html/rfc6238).
I managed to reproduce the results of the appendix of the paper, but when I ...
0
votes
0
answers
27
views
Is there a simple way to open an authenticator app for viewing?
I know how to open an authenticator app for registering a new account by using the URL scheme
otpauth://...
But what if I simply want to open the authenticator app for viewing? For example, I want to ...
0
votes
0
answers
20
views
WSO2 TOTP not working as port 9443 is getting appended to the url
I have wso2 installed in 2 nodes and each node have apache2 running on port 443 and wso2 running on 9443/9763 port. There is a load balancer for the nodes.
While implementing 2FA with Totp when user ...
1
vote
0
answers
24
views
How to implement recovery codes for TOTP multifactor authentication?
For multifactor authentication systems that make use of time-based OTPs and authenticator apps (such as Authy, Google Authenticator, etc), there needs to be a fallback mechanism in case the user loses ...
0
votes
0
answers
44
views
How to implement 'Step-up' authenticate using AAD B2C
We use B2C with email/phone MFA. I want to protect risky/sensitive actions by asking users to re-authenticate using a TOTP.
I can see examples of this pattern in other services, but not B2C. I looked ...
0
votes
1
answer
98
views
Otp.NET Verification Window not understandable
I've a problem with Otp.NET lib for TOTP generation/verification.
Due to some reasons I've a requirement where I need to generate totp codes valid up to some days.
But following test code does not ...
0
votes
0
answers
40
views
Why my remote view in notification is not displaying correctly in some device?
this is i am expecting and i have achieved this but,
this happens in some device when i try to use remote view.
i am making otp reader application, so when a new otp sms received i am showing this ...
0
votes
1
answer
205
views
Correct HTML code to enable autofill of TOTP input by password managers
There are quite a few password managers claiming to help the user by automatically filling in the 2FA token (TOTP) code normally generated by something like Google Authenticator. This should work very ...
0
votes
1
answer
41
views
Which HMAC algorithm does Google Authentication uses in TOTP?
I wonder which algorithm is used (HmacSHA256, HmacSHA512, other)? I tried to look into the information inside the QR code, but there is no algorithm parameter there.
0
votes
0
answers
29
views
B4x - Implement 2FA control
I have an issue will trying to implement 2FA in my app. The goal here is simply to give me the OTP code, no issue to generate Qr Code or to scan a QR code. I tried using this example. The lib gives a ...
0
votes
0
answers
200
views
How does ASP.NET Core generate TOTP (Time-Based One-Time Password) for 2FA?
I am trying to understand how ASP.NET generates the TOTP (Time-Based One-Time Password) when requested.
Looking at Rfc6238AuthenticationService implementation, I can see that each token should expire ...
-1
votes
1
answer
171
views
How can I determine the duration of valid time remaining on a TOTP token countdown?
I'm studying concepts of OTP with a small application to generate and validate HOTP and TOTP tokens. I'm stuck on the formula used to determine the expiration in seconds of a TOTP token at any given ...
0
votes
1
answer
236
views
Certain 2fa authenticator apps not working in Keycloak. Any Workarounds?
I hope you are doing good.
I have a question. We are using Keycloak as our auth provider for our Services, and for some users, we want to have 2fa enabled.
Now, it appears that not all authenticator ...
0
votes
0
answers
39
views
Can't enroll for using TOTP MFA inside gcloud Identity platform for multi-tenants
On Google Identity Platform we have multi-tenants, TOTP is enabled:
curl -X GET "https://identitytoolkit.googleapis.com/v2/projects/xxx/tenants/xxx" -H "Authorization: Bearer $(...
0
votes
0
answers
77
views
Cannot configure TOTP in Keycloak 1.7.0 Final
I am using a Keycloak 1.7.0 Final and I am trying to configure TOTP for a user.
Once I set the required action (Configure TOTP), at the first login I get the configuration page with the QR and the ...