Módulo para geraçao de validacao token baseados em tempo(OTP)
npm install meiaentrada-otpjavascript
npm i meiaentrada-otp --save
`
To simple install:
javascript
npm i meiaentrada-otp
`Knowledge
- secret:
A unique key value per user to generate otp values;
For example: "secret_of_client_01"- holder:
A value to represent a people or entity that is using otp value like a client.
For example: "bank_01"
- issuer:
A value to represent the website or enterprise that is generating otp values to clients.
For example: "bank_client_01"
- otp value:
A positive number with 6 characters.
For example: "123456"
Methods
Generates a 32-character (160-bit) base32 key
Generate a URI base on OTPAUTH protocol - for more info. There is only a exception, the holder information is present on the URI params.
Validates a time-based token within a +/- 30 second (90 seconds) window.
Return true or false in according with secret, current timestamp and otp value.
Generates a 6-digit (20-bit) decimal time-based tokenUsage
javascript
const otp = require('meiaentrada-otp');const secret = otp.generateKey();
console.log(secret); // "igxo jj5n gpuj gv4c lotw ve7d tmlu xftb"
const holder = 'user_01';
const issuer = 'enterprise_01';
const uri = otp.generateOtpURI(secret, holder, issuer);
console.log(uri); // otpauth://totp/enterprise_01:user_01?secret=7MEYUZ52337HOOKX25GE3RVIMQ6MJK4O&issuer=enterprise_01&algorithm=SHA1&digits=6&period=30&holder=user_01
const otpCode = otp.generateTokenOTP(secret);
console.log(otpCode); // 774729
let isValidToken = otp.isValidTokenOTP(secret, otpCode);
console.log(isValidToken); // true
isValidToken = otp.isValidTokenOTP('wrong-secret', otpCode);
console.log(isValidToken); // false
``