Base32 encoded token secret support - Githubissues

akopachov / flipper-zero_authenticator

Software-based TOTP/HOTP authenticator for Flipper Zero device.

GNU General Public License v3.0

515 stars 23 forks source link

Base32 encoded token secret support #42

Closed ilyabreev closed 1 year ago

ilyabreev commented 1 year ago

Hi there!

Is there any way to use base32 encoded secret got from otpauth://totp/smth?secret=xxxxxxx&issuer=zzz URL Tried to paste it in config. App runs smoothly but generated codes are wrong.

akopachov commented 1 year ago

Hey, what you need to take out of such a URIs is whatever is going after secret= and till & or end of string.

So in your example otpauth://totp/smth?secret=xxxxxxx&issuer=zzz what you need to provide to Flipper Authenticator is xxxxxxx only.

ilyabreev commented 1 year ago

Thanks for your reply. Yeah that's exactly what i've done. Also I checked that flipper clock is synced through BT with flipper app. Trying to login into my Github profile for example. I'm using SHA-1. Still doesn't work.

I wonder if codes generated with flipper must exactly match with Google Authenticator codes?

akopachov commented 1 year ago

Have you set correct timezone offset in Flipper Authenticator?

ilyabreev commented 1 year ago

Yes. It's MSK for my case (+3h).

ilyabreev commented 1 year ago

Forgot to mention that flipper-zero authenticator refreshes codes slightly later than Google Authenticator app (with 0.5-1.5 seconds delay). May be this an issue?