UNPKG

@sergiomorenoalbert/fastify-totp

Version:

A plugin to handle TOTP (e.g. for 2FA)

github.com/semoal/fastify-totp

semoal/fastify-totp

88 lines (58 loc) 3.44 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
# @sergiomorenoalbert/fastify-totp A plugin to handle TOTP (e.g. for 2FA), forked to handle typings and updated dependencies ![Node.js CI](https://github.com/semoal/fastify-totp/workflows/Node.js%20CI/badge.svg) | Fastify version | @sergiomorenoalbert/fastify-totp version | |---|---| | v5 | ^2.x.x | | v4 | ^1.x.x | ## Install ```bash npm i --save @sergiomorenoalbert/fastify-totp yarn add @sergiomorenoalbert/fastify-totp pnpm i --save @sergiomorenoalbert/fastify-totp ``` ## Usage ```js fastify.register(require('@sergiomorenoalbert/fastify-totp')) // ... secret = fastify.totp.generateSecret() // You should now store secret.ascii in order to verify the TOTP. const token = req.body.token isVerified = fastify.totp.verify({ secret: secret.ascii, token }) ``` The plugin includes also a facility to generate a **QRCode** that can be used to quickly configure third-party authenticators (*e.g. Google Authenticator*) ```js const qrcode = await fastify.totp.generateQRCode({ secret: secret.ascii }) ``` ## Methods | Name | Description | |-------------------------------------|------------------------------------------------------------------------------------| | `generateSecret (length)` | Generate a new secret with the provided `length` (or use default one otherwise) | | `generateToken (options)` | Generate a TOTP token based on given `options`. | | `generateAuthURL (options)` | Generate an *auth URL** that can be used to configure a third-party authenticator. | | `generateQRCode (options) [async]` | Genereate a data-URI of a *QRCode* to share the *auth URL*. | | `verify (options)` | Verify a TOTP token with the original secret. | ## Request | Name | Description | |---------------------------------|---------------------------------------------------------------| | `request.totpVerify (options)` | See `verify`. | ## Options | Name | Description | |--------------------|----------------------------------------------------------------------------------------------| | `secretLength` | The length of the generated secret. *Default: 20* | | `totpLabel` | The label to show in third-party authenticators. Usually the app name. *Default: "Fastify"* | | `totpWindow` | The allowable previous or future "time-windows" to check against of. *Default: 1* | | `totpAlg` | The algorithm to use for hash generation. *Default: "sha512"* | | `totpStep` | Time step in seconds. *Default: 30* | **NOTE:** for more details, please take a look at [Speakeasy docs](https://www.npmjs.com/package/speakeasy#documentation). ## Test ```bash pnpm install pnpm test ``` ## Acknowledgements This project is kindly forked by: [![Beliven](https://github.com/beliven-it/fastify-totp)](https://github.com/beliven-it/fastify-totp) ## License Licensed under [MIT](./LICENSE)