Skip to content

sshilin/otp

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
otp.go
otp.go
 
 
otp_test.go
otp_test.go
 
 

Repository files navigation

One-Time Passwords

GoDoc

Package otp implements the RFC 4226 (HOTP) and RFC 6238 (TOTP) standards for one-time password generation and validation. It provides functions to generate and validate HMAC-Based and Time-Based One-Time Passwords using a shared secret key.

Install

go get github.com/sshilin/otp

Usage

key := []byte("secret")

hotp := otp.NewHotp()
totp := otp.NewTotp()

code := hotp.Generate(key, totp.At(time.Now()))

isValid := hotp.Validate(key, code, totp.At(time.Now()))

Use with Google Authenticator

The example generates QR-code for registering a demo service in TOTP mode and then prompts codes from the authenticator.

func main() {
	key := make([]byte, 20)
	rand.Read(key)

	hotp := otp.NewHotp()
	totp := otp.NewTotp()

	secret := strings.TrimRight(base32.StdEncoding.EncodeToString(key), "=")
	uri := fmt.Sprintf("otpauth://totp/demo:example?secret=%s&issuer=demo", secret)

	qrterminal.Generate(uri, qrterminal.M, os.Stdout)

	reader := bufio.NewReader(os.Stdin)
	for {
		fmt.Print("Code: ")
		text, _ := reader.ReadString('\n')
		code := strings.TrimSpace(text)
		isValid := hotp.Validate(key, code, totp.At(time.Now()))
		fmt.Println("Is valid:", isValid)
	}
}

About

Generate and validate HOTP/TOTP codes

Topics

otp rfc-6238 rfc-4226

Resources

Readme

License

BSD-3-Clause license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages