From 4a505389c218a6684e83d638d622e02d24ef8ea0 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?J=C3=A9r=C3=A9my=20JAMET?= Date: Thu, 17 Mar 2022 10:58:06 +0100 Subject: [PATCH] Add QR code configuration --- OTP.md | 32 ++++++++++++++++++++++---------- 1 file changed, 22 insertions(+), 10 deletions(-) diff --git a/OTP.md b/OTP.md index 663b49d..31ba81f 100644 --- a/OTP.md +++ b/OTP.md @@ -22,27 +22,39 @@ The secret key is an important element! This is sensitive data that allows you t For example, if you have a two-factor Google authentication, it is recommended to have two KeePass databases. In the first, your Google password, and in the second, the secret key that generates the TOTP token. -## HOTP +## QR Code + +KeePassDX can use the links generated by QR codes to register new OTP keys. But KeePassDX does not contain a QR code reader, other apps are dedicated to that and do the job very well. + +So you just have to use your favorite code reader app (ie: [QR & Barcode Scanner](https://github.com/dmitriy-ilchenko/QrAndBarcodeScanner)) and share the link to KeePassDX: +1. Open your database in modification +2. Scan your QR code with a compatible app +3. Share the link to KeePassDX (ie: "share as text") +4. KeePassDX switches to "Save" mode +5. Select an entry (the otp field of the entry is automatically filled) +6. Save the entry +7. VoilĂ ! The OTP token is automatically generated +8. Check that your QR code reader app does not have a history, if so, delete the data. + +## Manually + +You can also extract the parameters (secret key, algorithm, period, digits) manually from the otpauth link and copy it into the fields provided. If some parameters are not indicated, simply leave those of the default form. + +### HOTP [[images/OTP/HOTP_form.jpg]] -## TOTP +### TOTP [[images/OTP/TOTP_RFC6238_form.jpg]] -## TOTP Steam +### TOTP Steam Steam unfortunately does not use the standardized TOTP algorithms, but instead a custom one. **This special algorithm has been implemented in KeePassDX and is configurable in the Pro version!** [[images/OTP/TOTP_Steam_form.jpg]] -## QR Code -KeePassDX uses the links generated by the QR codes to save new OTP keys. -To do this, just share the link from your favorite [code reader](https://github.com/dmitriy-ilchenko/QrAndBarcodeScanner) app. - -You can also extract the parameters (secret key, algorithm, period, digits) manually from the otpauth link and copy it into the fields provided. If some parameters are not indicated, simply leave those of the default form. - -## Autofill +# Autofill The autofill of OTP tokens is very complicated and cannot be generalized because most forms do not use a standardized format and different metadata, so it is not possible to identify the fields to be filled in. To overcome this problem, the most efficient solution is to copy the OTP token directly from the list of entries in KeePassDX (make sure the `Settings - Appearance - Show OTP Token` is activated) Associated issue: https://github.com/Kunzisoft/KeePassDX/issues/553#issuecomment-912936390 \ No newline at end of file