Comments (6)
BastiaanJansen
commented on May 29, 2024
1
@whsoul I created a new release for the secret generator fix.
from otp-java.
whsoul
commented on May 29, 2024
1
@BastiaanJansen
oh, great!
I will check with new version 1.1.3
thanks!
from otp-java.
BastiaanJansen
commented on May 29, 2024
Thank you, I will look into it!
Preferably, the key should be completely random. But you could generate a key based on a custom seed, it would work, but it wouldn't be as secure. But that's a trade of. May I ask why you want to add a an id / email in your key?
from otp-java.
whsoul
commented on May 29, 2024
@BastiaanJansen
because if multi users request a OTP at the same time for emails verify, in my case,
same master key generate same OTP with in 30sec.
so different OTP per user at the same time, need to store different generated key per email(user) or use the custom combination key ( email + generated secret )
from otp-java.
BastiaanJansen
commented on May 29, 2024
@whsoul Ah, that makes sense! Yes, that should work!
However, the generated secrets are different without the email attached, right? Because the secret generator will always create a random secret. So, they will generate a different OTP, even when multiple users generate an OTP at the same time.
from otp-java.
whsoul
commented on May 29, 2024
@BastiaanJansen
thank you for your feed back!
from otp-java.
Related Issues (20)
- (JAVA-S0324) Private method is never called
- TOTPGenerator with ".withPeriod()" using less than a second parameter? HOT 9
- TOTPGenerator .withPeriod() question
- TOTPGenerator.verify return false with valid generated otp HOT 1
- Validation not works properly if timestep was given in hours or days HOT 9
- Android or Desktop? HOT 1
- Can TOPGenerator generate an alphanumeric OTP code? HOT 1
- With the same secret Generates the same OTP code, as long as it does not expire. HOT 4
- Fix 'xstream' dependency vulnerability
- Remaining Seconds? HOT 2
- Does not generate same OTP for same secret and time duration HOT 1
- Difference between Authy and generated code. HOT 1
- How to ensure TOTP is one-time in a distributed system. HOT 5
- Codes not being generated correctly HOT 1
- Issuer is not properly escaped in path segment of URI HOT 2
- Flexability when validating TOTP code. HOT 2
- Documentation Regarding Delay Window for Verification of ToTP HOT 4
- Move Base32 to static field instead create new instance every time to generate code HOT 1
- HMAC SHA 256 for TOTP verification HOT 2
- TOTP Code always wrong, need help understanding HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from otp-java.