two-factor-auth
ios-application
two-factor-auth | ios-application | |
---|---|---|
1 | 72 | |
298 | 996 | |
- | 0.7% | |
0.0 | 7.2 | |
over 1 year ago | 5 months ago | |
Java | Swift | |
ISC License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
two-factor-auth
-
How does Google Authenticator work?
It's really easy to integrate into websites as well. I did so a few years ago. The TOTP algorithm is just a few lines of code. I adapted this implementation https://github.com/j256/two-factor-auth at the time. There are similar libraries available for lots of languages.
You need a library like that and a way to convert an otp:// url into a QR code, for which there are many libaries as well. The rest is just implementing a sane UX around this. Storing the user's TOTP secret server side is a bit tricky. I suspect a plain text field in a database is quite common for this; which of course would be disastrous if that database were ever stolen. Secret stores don't scale for this as they tend to be designed for just a handful of secrets. We ended up encrypting these totp secrets using a key from our secret store.
ios-application
-
End of Life for Twilio Authy Desktop App
I use open source Raivo OTP [1] on iOS and then on my computers with Apple Silicon I use the same iOS app instead of their desktop because it sinks better.
[1] https://raivo-otp.com/
- PSA: The open source Raivo multi-factor authenticator announced they were acquired by "Mobime"
-
Ask HN: How do you deal with TOTP 2-factor auth?
Raivo is another option on iOS.
https://github.com/raivo-otp/ios-application
-
Ask HN: If a password manager stores your 2FA token is it still 2FA?
It's redundant having the two together. I suppose it still has the nicety of 'unphishable logins'. Personally though, I have a separate KeepassXC DB with all my 2FA stuff there. I use the Raivo OTP[0] app for TOTP. I would only open my 2FA DB when trying to recover a lost/damaged/stolen device with my Raivo OTP creds in it.
[0] https://raivo-otp.com/
- [HELP] Uploading Raivo OTP Icons
- Feltörték a Facebook fiòkom, történt már veletek ilyen?
- Google Authenticator Synchronisation sinnvoll?
-
Looking for new 2fa app
nice read: https://github.com/raivo-otp/ios-application/issues/36
-
What auth app should I use?
Unfortunately not, but Ravio is highly regarded in the apple ecosystem.
-
I buy 3 Yubikeys and is more complex that I though! (newbie questions)
I was think on use Raivo https://raivo-otp.com/ but now that I have this keys, possibly is better use the Y. Auth.
What are some alternatives?
Aegis - A free, secure and open source app for Android to manage your 2-step verification tokens.
pass-otp - A pass extension for managing one-time-password (OTP) tokens
NewPipe - A fork of NewPipe with SponsorBlock functionality.
google-authenticator - Open source version of Google Authenticator (except the Android app)
KeePassDX - Lightweight vault and password manager for Android, KeePassDX allows editing encrypted data in a single file in KeePass format and fill in the forms in a secure way.
pyotp - Python One-Time Password Library
Tofu - An easy-to-use two-factor authentication app for iOS
keepassxc - KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.
strongbox - A secret manager for AWS
vaultwarden - Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs