This is a micro web service that aim to give a convenient and secure way to share time-based one time password (TOTP).
It is not recommend to share OTPs that should take it serious, and for security reasons, there is no way to extract or share OTPs which is already imported to your authenticator apps, unless you have backup the QRCode and/or its contents.
Even it is not a best pratice to do so, but we do offer a secure way to do it: When you click on the "Get Link" button, what we do is just encrypt what you entered and expiry time with a public key, wrap it to the link and return to you, no data is stored in our servers. And when you or someone get into the shared link or clicking "Refresh" button in it, we only decrypts the encrypted data included in the link with the private key, check the expiry time and return the current OTP as long as it is not expired. Again, no data is stored or read other than the encrypted data come with the link.
To getting started, you can extract the URL within the OTP QRCode that should be scanned with your authenticator app, or look for the URL provided by the site you want to enable 2FA. It should be look like this (adopted from this page):
otpauth://totp/Example:[email protected]?secret=JBSWY3DPEHPK3PXP&issuer=Example
Please take note of the string after ?, these are the parameters of your TOTP and it is required to generate your code.
To share this code to others using this site, copy the text between secret= and & (if any) and paste it to the form field.
If it contains digits, period or algorithm afterwards, copy those values to the corresponding fields as well.
For the example above, you should copy JBSWY3DPEHPK3PXP to secret field and keep other parameters as default.
The expires field can control how long will the shared link valids and expires afterwards, it is self explanatory and we are recommend to set it in a reasonable period depends on how you want to use the shared link.