sneezry / authenticator Goto Github PK
View Code? Open in Web Editor NEWThis repository has moved to https://github.com/Authenticator-Extension/Authenticator
License: Apache License 2.0
This repository has moved to https://github.com/Authenticator-Extension/Authenticator
License: Apache License 2.0
code not showing plz solve my problem
已有三个otp,再添加新otp,会覆盖旧的最后一个otp
See #9 (comment)
So maybe this isn't meant to be used this way, but when google syncs between computers, it pulls up my authenticator and claims to have the same authenticator codes as the source computer they originated on. However, the codes do not match and are actually incorrect. I'm also unsure if removing them from one PC browser version of Chrome will then cause Chrome to lose that data between all of my computers, so this is a bit of an issue?
Thanks!
Hi,
After formatting my computer, I reinstalled chrome and imported my exported keys. But I keep getting the error "Some accounts and passphrase do not match", even when using the correct password.
Sometimes I dont get the error and some keys show as Encrypted and other as blue dots.
App does not show when used on any display other than main. It's not a pop up issue because it works on the main display.
jsqrcode works well at most of time, however, it fails in decoding sometimes. I will improve the lib in later version.
Maybe we need some computer vision knowledge.
I know a few people who were having problems with Google Authenticator and they didn't know why. The reason was that their device's clocks were too inaccurate and the tokens weren't validating.
I wrote a quick jQuery function that gets the server time from google.com and calculates the offset of the local computer. If the computer's clock is off by too much, it won't be able to validate the tokens, so I think it's a good idea to let the user know if this is the case.
$.ajax({
type: "HEAD",
url: 'https://www.google.com',
success: function(data, status, xhr) {
var serverDate = new Date(xhr.getResponseHeader('Date'));
var localDate = new Date();
var timeDiff = Math.abs(serverDate.getTime() - localDate.getTime());
if (timeDiff > 30000) {
alert("Warning: Your computer's internal clock is off by more than 30 seconds. You should fix this before continuing.");
}
}
});
It uses google.com, which almost everyone should have in their DNS cache, and only does a HEAD
request, so it doesn't download the page content, and is asynchronous. Therefore it's pretty lightweight and won't interrupt anything else. You just need to add the following to your manifest file's permissions:
"https://www.google.com/"
Of course, this just uses alert()
to notify the user, but you could do many things with this, such as displaying a javascript pop-up, having some sort of bar that changes length and/or color based on the offset, adding a "troubleshooting" section which shows the actual offset, etc.
I can't sync the time with google. If i click the button it says "Failure."
System details:
Authenticator Version: 4.14
Google Chrome Version 41.0.2272.101 (64-bit)
System Ubuntu 14.04
Issue #11 improved the code formatting but it is unclear what jshint settings were used.
Can you add the .jshintrc
to the root dir of the project so that future pull requests can ensure they are formatting code as you desire?
In a similar vain, it may be helpful to add a simple .editorconfig
file. http://editorconfig.org/
Hi!
I like this authenticator a lot, but I think I am too dumb to add the battle.net auth. I do not have a QR Code to scan and with manual entry Blizz uses a serial number and a recovery code. Both do not work to add it.
Would be glad if someone could help :)
Cheers!
Hi Sneezry,
I want to kow what is phassphrase and how to use this plz guide me in detail or screen shoots
Could you please tag and upload a new minor release? The remeber spelling is still out there.
Hi,
I recently downloaded your source code and tried to run it locally on my browser as an unpacked extension. I was testing the extension with some random account names and secrets.
For first entry it worked well, but for any other entries after that, it shows ......
instead of the otp.
When I looked at the console , it said
Error in response to storage.get: TypeError: Cannot read property 'length' of undefined
at the line
chrome.storage.sync.get
Is there any way that I can avoid this, or is it because I am inserting some random data?
Thank you
Prerak
I see you've integrated a lot of my code. I just have one suggestion, instead of having the passphrase saved in LocalStorage (where it is available in plain text), it should be in the background page and the user should be prompted with a pop-up asking for the passphrase when starting the app for the first time.
my mmmglobal account is no open because ga key
Parou de gerar os códigos, não consigo resolver... :(
Why this always happen? something got? something not?
Both qrcode are same and scan it. Result is different
Hey, @Sneezry you wrote great app, since I started writing some 2fa in django it makes a lot easier to test couple of things.
Now I have some thoughts about that:
Anyway, great job, great extension!
Bart
When I enter my password and hit enter or OK, there is no feedback that I was entering the correct or incorrect password, the input box just clears my input as if the pop-up had just come up. I see all my accounts are still there but "Encrypted" but I can't get to them if it doesn't accept my password. I have cleared my cookies and history, restarted my computer, removed all other extensions to see if any are interfering (which they shouldn't in Chrome), but no luck.
USABILITY, NOT FUNCTIONALITY
When entering the password for the encrypted Authenticator accounts, pressing Enter does nothing, you have to click Ok. It would be faster when first unlocking Authenticator to enter the password and press enter, as would be the expected behavior, rather than be forced the extra click. #firstworldproblems
It a great update. One click copy is awesome. 2 thumbs up.
I was trying to configure my phone using Authenticator. Surprised! I could not find show QR anymore.
What happend?
Basically as the heading says, even if its within the same window, clicking to obtain the 2nd line of text, the authenticator screen closes and drops progress. basically cannot complete setting a second account.
using the QR code scan will bypass this issue, but that is if the website requiring the 2FA displays one with the codes.
few days after instaling authenticator,it crashed and all the ga codes are gone .how can i get it back?
I entered my 2FA Code to Save it and now when I goto find it has been removed now I can't login to the system without the 2FA please help.
passphrase is correct but my code still encrypted
I recently installed 2014 Sneezry 2-factor Authenticator and had one program requiring a verification code to log-in. I accidentally deleted the program/website from the authenticator so am no longer receiving verification codes. However, the website still says I am registered for a 2-factor authentication, requiring a verification code. This means I cannot log into this website and it is extremely important that I can access it. I have tried adding the website back to the system but I don't have the QR code needed. What do I do?
The secret is blank, so there is no "leakage" of information, but it shouldn't be an option of the secret is still encrypted.
I seem to lose access to GA
We are instructions to return
Hello,
for qr-generated TOTPS coming from LinOTP, "000000" shows up in plugin Authenticator.
eg for account "m..................." cfr below
On Android Google-Auth works fine and shows correct TOTP.
These are my entries on "Export":
"35e0118e1...........................":{
"account":"M........................","encrypted":true,"index":1,"issuer":"","secret":"U2F..............................","type":"totp"},"4360b401..............................":
"account":"m...............................","encrypted":true,"index":0,"issuer":"","secret":"U2F......................","type":"totp"}}
I would love to be able to generate a QR Code out of an entry to be able to scan it in a different Authenticator (say Google Authenticator on iOS or Android).
Extension stopped showing OTPs and gives the following error:
Error in response to storage.get: TypeError: Cannot read property 'length' of undefined
at Object.jsSHA.getHMAC (chrome-extension://bhghoamapcdpbohphigoooaddinpkbai/totp/jssha-1.31.min.js:11:14553)
at generate (chrome-extension://bhghoamapcdpbohphigoooaddinpkbai/totp/totp.js:71:22)
at updateCode (chrome-extension://bhghoamapcdpbohphigoooaddinpkbai/javascript/popup.js:545:62)
at Object.showCodes as callback
at chrome-extension://bhghoamapcdpbohphigoooaddinpkbai/javascript/popup.js:66:21
Hi,
Can you please add the functionality to add a key with Counter-based Authentication?
At the moment your addon seems to only work with time based authentication but a large number of systems require counter based.
Thanks...
I use this method to deploy your extension in my environment (Microsoft Windows Active Directory 2008 R2).
http://dev.chromium.org/administrators/policy-list-3#ExtensionInstallForcelist
¿it's supported?
I ask you because some of my users, sometimes lost all passwords. They are 5-6 cases daily of a universe than more 500 users.
Thansk!
Hi,
I work as a IT Admin within a medium sized company who have just recently enforced the use of 2Fa (2 factor Authentication) for all users for gmail.
We stumble across this awesome application as we have some users who would rather not give their personal mobile number to Google.... I know there is always one.
So I was trying to deploy this awesome extension via Windows Group Policy but for this to work we need the update URL that should be in the manifest config file, which I looked at via this Git page and this entry is missing.
I just wanted to know if there is a update URL for this application for this purpose and for Chrome to know the update url path ?
https://developer.chrome.com/extensions/autoupdate
Looking at the above Chrome uses this update URL to check for a new update, not sure how your applications updates are configured and I am now expert to software engineering. But if this is done differently then it would be awesome to know so that we can find another way around our issue.
Your help on this would be greatly appreciated :)
Kind Regards
Luke Simms
Hola! @usernamealreadyis has created a ZenHub account for the Sneezry organization. ZenHub is the leading team collaboration and project management solution built for GitHub.
To get set up with ZenHub, all you have to do is download the browser extension and log in with your GitHub account. Once you do, you’ll get access to ZenHub’s complete feature-set immediately.
ZenHub adds a series of enhancements directly inside the GitHub UI:
Still curious? See more ZenHub features or read user reviews. This issue was written by your friendly ZenHub bot, posted by request from @usernamealreadyis.
Hello...
I installed Google authenticator in my PC. I used OS WIndows 8 and my google chrome browser version is Version 43.0.2357.130 m.
I tried many times using both QR code capture or manual entry, but every time i tried to insert the pin, the statement keeps telling me that the pin is not matched.
Ps : I tried using my account in my friends Laptop using the same google authenticator but running in Windows 7 and It runs perfectly. So I guess the trouble is on my laptop.
Please help me solve this issue.
Best Regards,
Ali Susanto
Getting above reply when trying to enter passphrase. I was able to open up dialog that lets me re-enter and now just see dots.
I found some of your suggestions. I clicked on inspect element & selected console on menu. Got the following, which is in red:
Error in response to storage.get: TypeError: Cannot read property 'length' of undefined
at Object.jsSHA.getHMAC (chrome-extension://bhghoamapcdpbohphigoooaddinpkbai/totp/jssha-1.31.min.js:11:14553)
at generate (chrome-extension://bhghoamapcdpbohphigoooaddinpkbai/totp/totp.js:71:22)
at updateCode (chrome-extension://bhghoamapcdpbohphigoooaddinpkbai/javascript/popup.js:545:62)
at Object.showCodes as callback
at chrome-extension://bhghoamapcdpbohphigoooaddinpkbai/javascript/popup.js:66:21
please help me to open my account GLOBAL MMM . because I enter the wrong code . and I never booked or using this Authenticator .
I'm signed in to google but the data doesn't sync between my office and home computer. I have 6-7 codes on office computer but only 1 on home computer.
See https://github.com/Sneezry/authenticator/wiki/Introduction
I am a new user of 2 step verification and in the process of choosing different time based authenticator apps for different devices. So far I think this project (authenticator) is promising because it is very convenient to copy the number to the clipboard compared to reading my phone and typing the number in manually and on most of my devices Chrome Extensions are available and in the case of my chromebook it seems to be the best option. But I think there are cases when I want to use an app from my phone which doesn't support Google Chrome Extensions and I may not have a computer with Chrome available. For example, I may use Google Authenticator app.
Is the import/export just for backing up authenticator? Or is it a neutral format that I can import into other authenticator tools like the Google Authenticator app?
If it is not a neutral format, how do people login into sites like http://github.com from devices that don't have the authenticator they used when they setup the Two-factor authentication?
Hello,
I created an extension using your code. But the scanning feature does not work on some web pages. It says, "cannot capture. Please refresh the page".
But at the same time, if I use your extension, it works.
Any idea what may be leading to this behavior?
My extension is not been published on the Chrome Store yet. Can that be an issue?
Thanks!
Prerak
We have received two feedbacks about locked account. As we do not hold users' data, we can do nothing for help. Maybe the only thing we can do is reminding users to make backups periodically as Google does.
It might be a combination of the fact I'm on a 4k monitor with 150% default zoom and chromes 800x600 popup limit but I find that having a few OTP forces the bottom ones in the list to get chopped off.
I have to add a couple of dummy ones in at the bottom to shunt my real ones at the bottom up so I can see them when I scroll.
Also it would be nice if the zoom level/font size could be chosen I can only fit 3 in the popup without scrolling and I have 9 entries.
Thanks for this addon btw its much better than the others I tried.
Google authenticator window size issue
When click to the Google authenticator button, it open in normal size and then resize to little window. This is problem, because where is no possibility to use Google authenticator in this small window.
How ti fix?
I had synced 2FA app on Chrome because it doesnt work on my phone I dont know why. Then I turned off 2FA now, I have turned on and I cannot use my 2FA again at all............. what to do ? I contact the support but they dont respond soon maybe until 24-48 hours. Is there any chance to sync my account. The app is added on my chrome and it was working well. But now doesnt.
Sorry to double spam you. I decided to remove my authenticators form my accounts via my old computer (which had this authenticator previously) and add them to my new computer. However, now whenever I try to add a new authenticator, none of the keys match. I've tried completely removing the app and re-adding it, and made sure that my other computer was shut down so the Chromes were cross-talking via sync. I tried both QR can and manually adding, and nothing is working.
Hi there,
Do you have on your road-map a feature request to sort by Account name these Codes?
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.