Question 1

How to generate TOTP tokens in Elixir using POT?

Accepted Answer

Use :pot.totp/1 or :pot.totp/2 with a base32-encoded secret. For example, :pot.totp(secret) generates a 6-digit token. Options allow customizing interval length and digest method, as shown in the Elixir examples.

Question 2

POT vs other Erlang OTP libraries: which is better for Google Authenticator?

Accepted Answer

POT is specifically designed for RFC-compliant HOTP/TOTP with Google Authenticator compatibility, making it a direct choice. Alternatives might focus on different aspects, but POT's strict adherence to standards ensures reliability for 2FA integration.

Question 3

How to validate HOTP tokens with a last used counter in POT?

Accepted Answer

Use pot:valid_hotp/3 with the last option to specify the previous interval. For instance, pot:valid_hotp(Token, Secret, [{last, 5}]) checks tokens starting from interval 6, as demonstrated in the Erlang examples.

Question 4

Can POT handle clock drift in TOTP validation?

Accepted Answer

Yes, use the window option in pot:valid_totp/3 to allow a range of intervals. For example, setting window to 1 checks tokens from one interval before and after the current time, accommodating minor time differences.

Question 5

Is POT compatible with SHA256 for TOTP tokens?

Accepted Answer

Yes, POT supports SHA256 and SHA512 by setting the digest_method option to sha256 or sha512 in functions like totp/2. This is detailed in the function reference under digest_method for hotp/2,3.

Question 6

How to get the interval from a validated HOTP token?

Accepted Answer

Enable the return_interval option in pot:valid_hotp/3. It returns {true, Interval} instead of a boolean, allowing you to track the last used interval, as shown in the alternative validation example.

pot

What is pot?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions