~sircmpwn/meta.sr.ht#47: 
TOTP QR code uses invalid Key URI 

otpauth://totp/sr.ht:fkooman <fkooman@tuxed.net>?secret=S6UJQMEFQ734D4B2&issuer=sr.ht

See: https://github.com/google/google-authenticator/wiki/Key-Uri-Format#label

The "label" needs to be URL encoded, e.g.:

otpauth://totp/sr.ht:fkooman%40tuxed.net?secret=SECRET&issuer=sr.ht
Status
RESOLVED FIXED
Submitter
~fkooman
Assigned to
No-one
Submitted
6 years ago
Updated
6 years ago
Labels
No labels applied.

~fkooman 6 years ago

By the way, I tested with FreeOTP on iOS.

~sircmpwn 6 years ago

Note that if that's actually your TOTP secret, you need to change it.

~fkooman 6 years ago

Ah, I forgot to censor it in the first example. I don't have it set-up because FreeOTP didn't accept the QR code.

~sircmpwn 6 years ago

No worries in that case, it isn't applied to your account until you use it at least once.

~fkooman 6 years ago

https://lists.sr.ht/%7Esircmpwn/sr.ht-dev/%3C20180724165151.4353-1-fkooman%40tuxed.net%3E

Maybe it is not a bad idea to only show "sr.ht" and the email address, or account, but not both?

~sircmpwn 6 years ago

I like showing both. Thanks for the patch, I'll take a closer look later today.

~sircmpwn REPORTED FIXED 6 years ago

Register here or Log in to comment, or comment via email.