[Users] Help with supplying App Domain for OAuth2
Leon Fisk
lfiskgr at gmail.com
Fri Mar 25 21:09:21 UTC 2022
On Thu, 24 Mar 2022 22:43:58 +0200
Shai Berger <shai at platonix.com> wrote:
<snip>
>I think that this is just a default you can change, but it's been a
>while since I last set up 2FA for a Google account.
>
>But, importantly, you don't need to use Google's Authenticator -- you
>can use several alternatives available on F-droid; I've been happy with
>Aegis Authenticator.
Hi Shai and Richard,
Thanks to both of you for these tips. A bit of a Rabbit hole you lead
me down researching Authenticator apps. Curious how they worked ;-)
Thought I'd pass on this clip and the link to the tute for using
the Linux "oathtool" to create a web login key. Don't need a
phone app this way, just have to be careful with how you store the
secrete key :)
===
Linux 2 step verification (2FA) using oathtool
The syntax to generate totp is as follows:
oathtool -b --totp 'private_key'
Typically private_key only displayed once when you enable 2FA with
online services such as Google/Gmail, Twitter... and so on. You must
keep private_key secrete and never share with anyone. Here is a sample
session that creates code for my Twitter account.
$ oathtool -b --totp 'N3V3R G0nn4 G1v3 Y0u Up'
Sample outputs:
944092
===
https://www.cyberciti.biz/faq/use-oathtool-linux-command-line-for-2-step-verification-2fa/
--
Leon
Claws 3.18.0, Debian
More information about the Users
mailing list