Skip to content

yeojz/otplib

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

875 Commits
.github
.github
 
 
apps/docs
apps/docs
 
 
assets
assets
 
 
docker
docker
 
 
internal
internal
 
 
packages
packages
 
 
scripts
scripts
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
.prettierignore
.prettierignore
 
 
.prettierrc
.prettierrc
 
 
.size-limit.json
.size-limit.json
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
deno.json
deno.json
 
 
deno.lock
deno.lock
 
 
eslint.config.js
eslint.config.js
 
 
lefthook.yml
lefthook.yml
 
 
package.json
package.json
 
 
pnpm-lock.yaml
pnpm-lock.yaml
 
 
pnpm-workspace.yaml
pnpm-workspace.yaml
 
 
release.config.json
release.config.json
 
 
tsconfig.json
tsconfig.json
 
 
turbo.json
turbo.json
 
 
vitest.config.ts
vitest.config.ts
 
 

Repository files navigation

otplib-logo

otplib-repo

npm version License: MIT Downloads Code Repository

TypeScript-first library for HOTP and TOTP / Authenticator with multi-runtime (Node, Bun, Deno, Browser) support via plugins.

Tip

A web based demo is available at https://otplib.yeojz.dev.

You can scan and test the TOTP / HOTP QR Code samples with your chosen authenticator app.

Features

  • Zero Configuration - Works out of the box with sensible defaults
  • RFC Compliant - RFC 6238 (TOTP) and RFC 4226 (HOTP) + Google Authenticator Compatible
  • TypeScript-First - Full type definitions
  • Plugin Interface - Flexible plugin system for customising your cryptographic and base32 requirements (if you want to deviate from the defaults)
  • Cross-platform - Tested against Node.js, Bun, Deno, and browsers
  • Security-audited plugins — Default crypto uses @noble/hashes and @scure/base, both independently audited
  • Async-first API — All operations are async by default; sync variants available for compatible plugins

Important

v13 is a complete rewrite with breaking changes. For example:

  • (Removed) Separate authenticator package — TOTP now covers all authenticator functionality with default plugins
  • (Removed) Outdated plugins — Legacy crypto adapters removed in favor of modern, audited alternatives

See Migration Guide for details.

Quick Start

# Node npm install otplib pnpm add otplib yarn add otplib
# Other runtimes bun add otplib deno install npm:otplib
import { generateSecret, generate, verify, generateURI } from "otplib"; // Generate a secret const secret = generateSecret(); // Generate a TOTP token const token = await generate({ secret }); // Verify a token const result = await verify({ secret, token }); console.log(result.valid); // true

Packages

Package Version Downloads
otplib npm npm
@otplib/core npm npm
@otplib/totp npm npm
@otplib/hotp npm npm
@otplib/uri npm npm
@otplib/plugin-base32-scure npm npm
@otplib/plugin-crypto-noble npm npm
@otplib/plugin-crypto-node npm npm
@otplib/plugin-crypto-web npm npm
otplib-cli npm npm

Documentation

Refer to the Getting Started Guide, or check out the other sections in the guide:

Contributing

See CONTRIBUTING.md for development setup and guidelines.

AI Usage Disclosure

Since v13, parts of the codebase, tests, and documentation have been refined with AI assistance, with all outputs reviewed by humans. See CONTRIBUTING.md for guidelines.

License

MIT

About

One Time Password (OTP) / 2FA for Node.js and Browser - Supports HOTP, TOTP and Google Authenticator

otplib.yeojz.dev

Topics

nodejs cli otp browser two-factor hotp authenticator hmac google-authenticator two-factor-authentication 2fa one-time-passwords

Resources

Readme

License

MIT license

Contributing

Contributing

Security policy

Security policy
Activity

Stars

2.2k stars

Watchers

14 watching

Forks

144 forks
Report repository

Releases 61

v13.4.0 Latest
Mar 19, 2026
+ 60 releases

Sponsor this project

 
Learn more about GitHub Sponsors

Used by 22.2k

  • @saml-test-integrations
  • @Bekassyl
  • @lingnet
  • @lumaxis
  • @flexylewis
  • @prathameshdot
  • @lonelyH3b
  • @NextStepGuru
+ 22,193

Contributors 16

+ 2 contributors

Languages