Top 16 Python Totp Projects

• pyotp

  18 2,826 4.2 Python

  Python One-Time Password Library

  

Project mention: django authentication , login with otp | /r/django | 2023-07-06

Can’t you just use a HOPT/TOPT so the user can scan a QR code with e.g google authenticator? Check https://github.com/pyauth/pyotp for more information

• mintotp

  23 1,283 0.0 Python

  Minimal TOTP generator in 20 lines of Python

Project mention: PyPI announces mandatory use of 2FA for all software publishers | /r/programming | 2023-05-30

Huh? Who is saying you need a smartphone? PyPi accepts TOTP as 2FA. TOTP is an open standard that has been around for at least a decade already and is very easy to implement, literally 20 lines of python. There are a ton of TOTP applications available, from CLI, to GUI on desktop systems, to Android apps, iOS, etc. If you have any device, be it a computer, phone, tablet, etc., which you do since you need one to publish the code from, you can easily generate TOTP codes. Heck, you could even do it by a hand on a paper.

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• extract_otp_secrets

  10 964 8.3 Python

  Extract one time password (OTP) secrets from QR codes exported by two-factor authentication (2FA) apps such as "Google Authenticator". The exported QR codes from authentication apps can be captured by camera, read from images, or read from text files. The secrets can be exported to JSON or CSV, or printed as QR codes to console.

Project mention: Show HN: AuthWin – Authenticator App for Windows | news.ycombinator.com | 2024-03-03

This library uses the GPL v3 license: https://github.com/scito/extract_otp_secrets?tab=GPL-3.0-1-o...

Your options are to either go open-source or remove the library.

• python-bna

  7 241 4.3 Python

  Python implementation of the mobile Blizzard Authenticator (TOTP)

Project mention: Python implementation of the mobile Blizzard Authenticator (TOTP) | news.ycombinator.com | 2023-10-21

• full-stack-fastapi-postgresql

  1 221 6.8 Python

  Full stack, modern web application generator. Using FastAPI, PostgreSQL as database, Nuxt3, Docker, automatic HTTPS and more. (by whythawk)

  

Project mention: TOTP Authentication with Free Software | news.ycombinator.com | 2023-05-03

On the other end, I integrated TOTP into the auth workflow for a full stack FastAPI base project generator (https://github.com/whythawk/full-stack-fastapi-postgresql).

TOTP is great, but developers need to start adding it to their apps by default.

• android-otp-extractor

  3 211 0.0 Python

  Extracts OTP tokens from rooted Android devices

• rofi-rbw

  3 163 7.4 Python

  Rofi frontend for Bitwarden

Project mention: Bitwarden Broken in Linux | news.ycombinator.com | 2023-11-17

Yes, but it is quite uncomfortable to use, requiring you to get a session key and storing it somewhere. Instead, I've had good experiences with [rbw]. Maybe that would also be interesting for GP.

I've used to rbw for a rofi (and rofi-like frontend): https://github.com/fdw/rofi-rbw/

[rbw]: https://github.com/doy/rbw/

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• totp-cli

  5 123 5.5 Python

  A cli-based pass-backed TOTP app. (by WhyNotHugo)

• kagi

  1 90 5.8 Python

  WebAuthn security keys and TOTP multi-factor authentication for Django

• apache_2fa

  1 70 4.6 Python

  Apache two-factor (2FA) authentication with Google Authenticator based on Time-based One-Time Password (TOTP) or HMAC-based one-time password (HOTP) Algorithms.

• krypton

  4 47 9.3 Python

  Data encryption at rest and IAM for Python (by krptn)

  

Project mention: Krptn: User Auth and Encryption of data at rest, derived from users’ credentials | news.ycombinator.com | 2023-09-12

Hello, all!

Encryption and user authentication are crucial to cybersecurity.

Encryption can be implemented at various levels. I believe that handling encryption at the application level is the most secure since it decreases the attack surface. For example, the SQL server doesn’t get to see the plaintext.

Krptn is a piece of software I’m currently building which could be used as a user authentication service, which also handles encryption (at the application level) of the user’s associated data (e.g.: the users’ phone number).

(Krptn only has a Python API right now.)

It would run in the same server instance as your Python code, so no need to host anything new (decreased complexity) - just install the Python module and call the APIs.

For additional security, I designed the system to derive the encryption keys from the users’ credentials. This prevents an attacker who gains access to the database from being able to decrypt all the data since the encryption keys aren’t stored anywhere. Additionally, each user gets an asymmetric keypair. This enables users to share specific pieces of information with each other.

I know that, for many projects, this level of encryption is not required to secure their system and hence not everyone would benefit from using this. But I hope that for the people who do wish to have such security, this project will help.

It would be much appreciated if you would try this out. Please let me know what you think of this! Also please provide some feedback if you have any!

Here is an example Django integration: https://github.com/krptn/djangoExample

Here is an example Flask integration: https://github.com/krptn/flaskExample

GitHub repo: https://github.com/krptn/krypton

• alfred-ykman-oath

  1 10 2.2 Python

  Alfred workflow for obtaining TOTP codes from a YubiKey

Project mention: Show HN: Alfred workflow for Yubikey OATH application (TOTP) | news.ycombinator.com | 2023-07-15

• FreakOTP

  1 4 4.4 Python

  FreakOTP✨🔑🎃 is a command line two-factor authentication application.

• djangoExample

  1 2 3.9 Python

  Example Krptn Integration with Django

  

Project mention: Krptn: User Auth and Encryption of data at rest, derived from users’ credentials | news.ycombinator.com | 2023-09-12

Hello, all!

Encryption and user authentication are crucial to cybersecurity.

Encryption can be implemented at various levels. I believe that handling encryption at the application level is the most secure since it decreases the attack surface. For example, the SQL server doesn’t get to see the plaintext.

Krptn is a piece of software I’m currently building which could be used as a user authentication service, which also handles encryption (at the application level) of the user’s associated data (e.g.: the users’ phone number).

(Krptn only has a Python API right now.)

It would run in the same server instance as your Python code, so no need to host anything new (decreased complexity) - just install the Python module and call the APIs.

For additional security, I designed the system to derive the encryption keys from the users’ credentials. This prevents an attacker who gains access to the database from being able to decrypt all the data since the encryption keys aren’t stored anywhere. Additionally, each user gets an asymmetric keypair. This enables users to share specific pieces of information with each other.

I know that, for many projects, this level of encryption is not required to secure their system and hence not everyone would benefit from using this. But I hope that for the people who do wish to have such security, this project will help.

It would be much appreciated if you would try this out. Please let me know what you think of this! Also please provide some feedback if you have any!

Here is an example Django integration: https://github.com/krptn/djangoExample

Here is an example Flask integration: https://github.com/krptn/flaskExample

GitHub repo: https://github.com/krptn/krypton

• TTM

  2 2 7.0 Python

  Terminal TOTP Manager is a command-line tool for managing TOTPs (by The-Robin-Hood)

Project mention: Terminal TOTP Manager | /r/pythoncoding | 2023-06-23

• TOTP_poc

  1 2 0.0 Python

  Time based OTP - Proof of concept

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Python Totp related posts

• Python implementation of the mobile Blizzard Authenticator (TOTP)
  1 project | news.ycombinator.com | 21 Oct 2023
• django authentication , login with otp
  1 project | /r/django | 6 Jul 2023
• WebAuthn Is Great and It Sucks
  2 projects | news.ycombinator.com | 2 Jul 2023
• Terminal TOTP Manager
  1 project | /r/pythoncoding | 23 Jun 2023
• Managing credentials for automated scripts
  1 project | /r/learnpython | 15 Jun 2023
• Battle.net Authenticator Now Integrated into the Battle.net Mobile App
  1 project | /r/wow | 6 Jun 2023
• PyPI announces mandatory use of 2FA for all software publishers
  3 projects | /r/programming | 30 May 2023
• A note from our sponsor - WorkOS
  workos.com | 25 Apr 2024

  The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Python projects with our weekly report!