UNPKG

@vs-org/authenticator

Version:

VS authenticator package can generate TOTP (RFC6238) for 2FA, and also provide secret and recovery codes for 2FA setup

github.com/vaibhav-sarwade-404/vs-authenticator

vaibhav-sarwade-404/vs-authenticator

153 lines (112 loc) 3.11 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
# vs-authenticator This repo holds logic for generating TOTP (RFC6238) for 2FA By default TOTP verification is based on 2 time step, meaning OTP is valid for 60 seconds. If there is need to validate TOTP from past then provide prevTimeSteps option ## How to use # TOTP generation and verification ``` const VsAuthenticator = required("vs-authenticator"); const secret = VsAuthenticator.generateSecret(); const totp = VsAuthenticator.generateTOTP(secret.base32Secret); // To verify TOTP provided by user const isValidTOTP = VsAuthenticator.verifyTOTP( userProvidedTOTP, secret.base32Secret); /** * To verify past TOTP's * Verify TOTP's from last 90 seconds ( as default step is of 30 seconds, 90 /30 = 3 ) */ const isValidTOTP = VsAuthenticator.verifyTOTP( userProvidedTOTP, secret.base32Secret, 3); ``` # Recovery codes generation 1. Generate numbers as recover codes ``` const recoveryCodes = VsAuthenticator.generateRecoverCodes({ codeLength: 6, codeType: "numbers", numberOfCodes: 20 }); // console.log(recoveryCodes); [ '438171', '090722', '317662', '804551', '375587', '452225', '306622', '028157', '174671', '035603', '057717', '058642', '106383', '469748', '854384', '475571', '351376', '500001', '253358', '514030' ] ``` <br/> 2. Generate recovery codes with lowercase alphabet ``` const recoveryCodes = VsAuthenticator.generateRecoverCodes({ codeLength: 6, codeType: "lowercase", numberOfCodes: 20 }); // console.log(recoveryCodes); [ 'kqeisx', 'oscatr', 'jxpdpf', 'qymoaw', 'rkbatc', 'kqmvoe', 'cprkgf', 'ahegif', 'oicjur', 'wooivs', 'hyjmko', 'ouwgnv', 'jvhkum', 'wkgyjp', 'cgjosq', 'qbybjn', 'sciefw', 'cpawhe', 'smbqng', 'qglkpm' ] ``` <br/> 3. Generate recovery codes with uppercase alphabet ``` const recoveryCodes = VsAuthenticator.generateRecoverCodes({ codeLength: 6, codeType: "uppercase", numberOfCodes: 20 }); // console.log(recoveryCodes); [ 'BSDDYS', 'XYOYVQ', 'NNXTVT', 'EEJTOT', 'YNVJGS', 'AXIALT', 'SAIHCL', 'QDRCHV', 'LNUGDF', 'JGLQJR', 'FJKGVJ', 'MXVOKT', 'CMFUDT', 'OSFMTV', 'PYXJGE', 'ADXAJN', 'YSUFSF', 'OLCFKY', 'IKIGOP', 'KMJPTI' ] ``` <br/> 4. Generate recovery codes with only symbols (not good practice but it is generic function that can generate random symbols from charset) ``` const recoveryCodes = VsAuthenticator.generateRecoverCodes({ codeLength: 6, codeType: "symbols", numberOfCodes: 20 }); // console.log(recoveryCodes); [ '?<]?%}', '&#!&};', '}@,%@(', '@.&}(/', '{*.}%%', ']].*?!', '.?]#&(', '}?>*,#', ':!<@@>', ',.);:<', '#)$%.[', '],/>##', '{!@!()', ']</)>[', ',[#<#!', '?:@;:;', ',[:&(*', '*@,:*;', '?$!:]]', ';>;!,<' ] ``` <br/> 5. Generate recovery codes ``` const recoveryCodes = VsAuthenticator.generateRecoverCodes({ codeLength: 6, codeType: "random", numberOfCodes: 20 }); // console.log(recoveryCodes); [ 'GAT@A#', 'c4fxd;', 'o#@;6[', 'KfZ4mY', 'xX.)b$', 'Fwa)qh', 'AV$C7L', 'b;:7kh', 'l%it6T', '6d!>E)', '$0po(b', 'Mk*k5B', 'nYp>/J', '.Gj$h1', 'x$xHb3', '?{4zhv', 'sKKsLB', 'MVfAOG', '&wDoY7', 'sQ@CHF' ] ```