@radzor/two-factor-auth

TOTP-based two-factor authentication. Generate secrets, create QR URIs, and verify tokens (RFC 6238).

Authenticationv0.1.0typescriptpythonServer2fatotpotpauthenticationsecuritymfaby Radzor

Install

$npx radzor@latest add two-factor-auth

⚠ Constraints: No external dependencies. TOTP tokens are time-based (RFC 6238) — server clock must be accurate. Default window is ±1 period (30 seconds). QR URIs use otpauth:// format.

Inputs

Name	Type	Default	Description
issuer*	string	—	App or service name shown in authenticator apps.
digits	number	—	Number of digits in OTP (default: 6)
period	number	—	Time step in seconds (default: 30)

issuer*string

App or service name shown in authenticator apps.

digitsnumber

Number of digits in OTP (default: 6)

periodnumber

Time step in seconds (default: 30)

{ "llm": { "constraints": "No external dependencies. TOTP tokens are time-based (RFC 6238) — server clock must be accurate. Default window is ±1 period (30 seconds). QR URIs use otpauth:// format.", "usageExamples": "llm/examples.md", "integrationPrompt": "llm/integration.md" }, "name": "@radzor/two-factor-auth", "tags": [ "2fa", "totp", "otp", "authentication", "security", "mfa" ], "events": [ { "name": "onVerified", "payload": { "valid": "boolean", "accountName": "string" }, "description": "Fired when a TOTP token is verified." }, { "name": "onError", "payload": { "code": "string", "message": "string" }, "description": "Fired on verification error." } ], "inputs": [ { "name": "issuer", "type": "string", "required": true, "description": "App or service name shown in authenticator apps." }, { "name": "digits", "type": "number", "required": false, "description": "Number of digits in OTP (default: 6)" }, { "name": "period", "type": "number", "required": false, "description": "Time step in seconds (default: 30)" } ], "radzor": "1.0.0", "actions": [ { "name": "generateSecret", "params": [], "returns": "{ secret: string; base32: string }", "description": "Generate a new TOTP secret. Returns raw bytes and base32-encoded form." }, { "name": "generateQrUri", "params": [ { "name": "secret", "type": "string", "description": "Base32-encoded secret." }, { "name": "accountName", "type": "string", "description": "User account name shown in the authenticator app." } ], "returns": "string", "description": "Generate an otpauth:// URI suitable for QR code display." }, { "name": "verifyToken", "params": [ { "name": "secret", "type": "string", "description": "Base32-encoded TOTP secret." }, { "name": "token", "type": "string", "description": "6-digit OTP token from the user." } ], "returns": "{ valid: boolean; delta: number }", "description": "Verify a TOTP token. Checks current and adjacent time windows." } ], "outputs": [ { "name": "verificationResult", "type": "{ valid: boolean; delta: number }", "description": "Verification result with validity flag and time step delta." } ], "runtime": "server", "version": "0.1.0", "category": "auth", "languages": [ "typescript", "python" ], "description": "TOTP-based two-factor authentication. Generate secrets, create QR URIs, and verify tokens (RFC 6238).", "dependencies": { "packages": {} }, "composability": { "connectsTo": [ { "output": "verificationResult", "compatibleWith": [ "@radzor/sms-send.action.send.to", "@radzor/email-send.action.send.message", "@radzor/push-notification.action.sendToDevice.token" ] } ] } }

@radzor/two-factor-auth

Install

Inputs

Outputs

Actions

Events

Composability

radzor.manifest.json

Version History