npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

accessotp

v1.0.0

Published

accessotp is a robust and secure package designed for OTP (One-Time Password) generation and validation. It provides developers with an efficient way to implement authentication or verification mechanisms using OTPs, without relying on third-party modules

Downloads

21

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

krishnatadikrishnatadi

Keywords

otpone-time passwordotp generatorotp validationauthenticationverificationsecuritynodejssecure otphigh securitybankingcryptopassword-generatorpasswordgenerator

Readme

AccessOTP

AccessOTP is a secure, scalable, and easy-to-use OTP (One-Time Password) generator and validator. It supports both numeric and alphanumeric OTPs, customizable OTP lengths, and expiration times, making it ideal for applications requiring authentication, verification, or security checks.

Table of Contents

Installation

This is a Node.js module available through the npm registry.

Before installing, download and install Node.js. Node.js 0.10 or higher is required.

If this is a brand new project, make sure to create a package.json first with the npm init command.

Installation is done using the npm install command:

To install saltyhash, use npm:

$ npm install accessotp

Features & Functionalities

  • OTP Generation: Generate secure one-time passwords (OTP) for authentication and verification.
  • OTP Validation: Validate OTPs with a single-use mechanism to ensure security.
  • Customizable OTP Length: Choose the desired length for generated OTPs.
  • Configurable Expiry Time: Set a custom time-to-live (TTL) for OTP expiration.
  • Alphanumeric OTP Option: Generate either numeric or alphanumeric OTPs.
  • Multiple User Support: Handle OTP generation and validation for thousands of users concurrently.
  • Flexible Usage: Can be used for user authentication, verification, or two-factor authentication (2FA).

Examples

1. Generate a Numeric OTP with Default Expiry

This example generates a 6-digit numeric OTP for the user identified as user123, which is automatically stored with a default expiry time of 5 minutes, allowing the user to authenticate within that timeframe.

const otp = require('accessotp'); // Import the accessotp package
const identifier = 'user123'; // Define the user identifier

// Generate a 6-digit OTP with default expiry (5 minutes)
const generatedOTP = otp.generateOTP(identifier); 
console.log('Generated OTP:', generatedOTP); // Output the generated OTP
/*
Output:
Generated OTP: 123456 // Example output (actual OTP will vary)
*/

2. Validate a Correct OTP

In this scenario, we generate an OTP for user123 and immediately validate it against the stored OTP; since they match, the output confirms successful validation, enabling user authentication.

const otp = require('accessotp'); // Import the accessotp package
const identifier = 'user123'; // Define the user identifier

// Generate OTP for the user
const generatedOTP = otp.generateOTP(identifier); 

// Validate the generated OTP
const validationResult = otp.validateOTP(identifier, generatedOTP.otp); 
console.log('Validation Result:', validationResult); // Output the validation result
/*
Output:
Validation Result: { valid: true, reason: 'OTP validated successfully' }
*/

3. Validate an Incorrect OTP

Here, after generating a valid OTP for user123, we attempt to validate it using an incorrect hardcoded value (000000); the output indicates that validation fails due to an OTP mismatch, enhancing security.

const otp = require('accessotp'); // Import the accessotp package
const identifier = 'user123'; // Define the user identifier

// Generate OTP for the user
const generatedOTP = otp.generateOTP(identifier); 

const wrongOTP = '000000'; // Example of an incorrect OTP

// Attempt to validate incorrect OTP
const validationResult = otp.validateOTP(identifier, wrongOTP); 
console.log('Validation Result (invalid):', validationResult); // Output the validation result
/*
Output:
Validation Result (invalid): { valid: false, reason: 'OTP mismatch' }
*/

4. Generate an OTP with a Custom Expiry (30 Seconds)

This example generates a 6-digit OTP for user456 that expires after 30 seconds. It demonstrates how to customize the OTP expiry time.

const otp = require('accessotp'); // Import the accessotp package
const identifier = 'user456'; // Define another user identifier

// Generate a 6-digit OTP with 30 seconds expiry
const generatedOTP = otp.generateOTP(identifier, 6, 30000); 
console.log('Generated OTP:', generatedOTP); // Output the generated OTP
/*
Output:
Generated OTP: 654321 // Example output (actual OTP will vary)
*/

5. Generate an Alphanumeric OTP

This example shows how to generate a 6-character alphanumeric OTP for user789. The alphanumeric parameter allows for a broader range of characters in the OTP.

const otp = require('accessotp'); // Import the accessotp package
const identifier = 'user789'; // Define another user identifier

// Generate a 6-character alphanumeric OTP
const generatedOTP = otp.generateOTP(identifier, 6, 300000, true); 
console.log('Generated Alphanumeric OTP:', generatedOTP); // Output the generated OTP
/*
Output:
Generated Alphanumeric OTP: A1B2C3 // Example output (actual OTP will vary)
*/

6. Validate an OTP After Expiry

In this example, we generate an OTP that expires after just 1 second. After waiting for 2 seconds, we attempt to validate it. The validation fails because the OTP has expired.

const otp = require('accessotp'); // Import the accessotp package
const identifier = 'user123'; // Define the user identifier

// Generate OTP with 1 second expiry
const generatedOTP = otp.generateOTP(identifier, 6, 1000); 

setTimeout(() => { // Wait for 2 seconds to validate
    const validationResult = otp.validateOTP(identifier, generatedOTP); 
    console.log('Validation Result (after expiry):', validationResult); // Output the validation result
}, 2000);
/*
Output:
Validation Result (after expiry): { valid: false, reason: 'OTP not found or expired' }
*/

7. Multiple Users OTP Handling

This example demonstrates generating OTPs for two different users (user1 and user2). The package can handle multiple users simultaneously.

const otp = require('accessotp'); // Import the accessotp package

// Generate OTP for user1 and user2
const user1OTP = otp.generateOTP('user1'); 
const user2OTP = otp.generateOTP('user2'); 
console.log('User 1 OTP:', user1OTP); // Output OTP for user1
console.log('User 2 OTP:', user2OTP); // Output OTP for user2
/*
Output:
User 1 OTP: 789012 // Example output (actual OTP will vary)
User 2 OTP: 345678 // Example output (actual OTP will vary)
*/

8. Resend OTP for the Same User

Here, we generate an OTP for user123 and then immediately generate a second OTP. This simulates the process of resending an OTP.

const otp = require('accessotp'); // Import the accessotp package
const identifier = 'user123'; // Define the user identifier

// Generate the first OTP
const firstOTP = otp.generateOTP(identifier); 
// Generate and resend a new OTP
const secondOTP = otp.generateOTP(identifier); 
console.log('First OTP:', firstOTP); // Output the first OTP
console.log('Resent OTP:', secondOTP); // Output the resent OTP
/*
Output:
First OTP: 123456 // Example output (actual OTP will vary)
Resent OTP: 654321 // Example output (actual OTP will vary)
*/

9. Validate with Correct OTP After Resending

This example validates the second OTP after it has been resent. The validation is expected to succeed since we validate the most recently generated OTP.

const otp = require('accessotp'); // Import the accessotp package
const identifier = 'user123'; // Define the user identifier

// Generate the first OTP
const firstOTP = otp.generateOTP(identifier); 
// Generate a new OTP
const secondOTP = otp.generateOTP(identifier); 

// Validate the resent OTP
const validationResult = otp.validateOTP(identifier, secondOTP.otp); 
console.log('Validation Result (resent OTP):', validationResult); // Output the validation result
/*
Output:
Validation Result (resent OTP): { valid: true, reason: 'OTP validated successfully' }
*/

10. Handle Expired OTP Gracefully

In this example, we generate an OTP that expires in 1 second. After waiting for 2 seconds, we validate it and correctly receive a response indicating that the OTP is no longer valid.

const otp = require('accessotp'); // Import the accessotp package
const identifier = 'user123'; // Define the user identifier

// Generate OTP with 1 second expiry
const generatedOTP = otp.generateOTP(identifier, 6, 1000); 

setTimeout(() => { // Wait for 2 seconds to validate
    const validationResult = otp.validateOTP(identifier, generatedOTP); 
    console.log('Validation Result (after expiry):', validationResult); // Output the validation result
}, 2000);
/*
Output:
Validation Result (after expiry): { valid: false, reason: 'OTP not found or expired' }
*/

11. Rate Limiting

This example demonstrates the rate limiting feature, where generating more than 5 OTPs in a minute for the same identifier results in an error.

// Import the accessotp package
const otp = require('accessotp'); // Ensure that 'accessotp' is installed and the path is correct

const identifier = 'user123'; // Define the user identifier

// Function to test OTP generation and validation with rate limiting
async function testaccessotp() {
    console.log(`Testing OTP generation and validation for identifier: ${identifier}`);

    // Generate multiple OTPs to test rate limiting
    for (let i = 0; i < 7; i++) { // Attempt to generate 7 OTPs
        try {
            // Generate an OTP for the user (default 6 digits, 5 minutes expiry)
            const generatedOTP = otp.generateOTP(identifier);
            console.log(`Generated OTP #${i + 1}:`, generatedOTP);

            // Validate the generated OTP
            const validationResult = otp.validateOTP(identifier, generatedOTP.otp);
            console.log(`Validation Result for OTP #${i + 1}:`, validationResult); // Output the validation result
        } catch (error) {
            console.error(`Error on attempt ${i + 1}:`, error.message); // Output error message for rate limiting
        }

        // Wait for a short period to simulate real-world usage
        await new Promise(resolve => setTimeout(resolve, 500)); // Wait 500 milliseconds
    }
}

// Run the test function
testaccessotp();

12. Generating OTP with a Custom TTL

This example demonstrates how to generate an OTP with a custom time-to-live (TTL), allowing the developer to control how long the OTP remains valid.

const otp = require('accessotp'); // Import the accessotp package
const identifier = 'user123'; // Define the user identifier

const otpWithCustomTTL = otp.generateOTP(identifier, 6, 10000); // 10 seconds TTL
console.log('Generated OTP with Custom TTL:', otpWithCustomTTL);
/*
Output:
Generated OTP with Custom TTL: 987654 // Example output
*/