Create Task
Maniphest T10226

Two Factor Authenticator - OTP Generation
Open, WishlistPublic
Actions

Description

I was thinking about integrating the OTP-Generator on my phone to my desktop in a convenient way. I then thought about having an OTP-Generator integrated in the KDE Connect Android app and available on connected PCs.

How I imagine it to be:

  • OTP-Generator inside the KDEConnect app
  • Button and/or Keyboard Shortcut in Desktop client to open a window/popup, which shows a list of all OTP Codes synced live from the device (without giving away the private keys of course).
  • When phone is not connected to Desktop, the Desktop can't see or generate the OTP codes of the phone
  • When phone is not connected to anything, allow the user to use the OTP function locally on the device.

Steps:

  • Implement OTP in Android App in an Activity that is independent of connected hosts
  • Implement protocol to send over OTP codes to desktop if requested
  • Implement GUI on Desktop to allow seeing the OTP codes

Optional features:

  • Require authentication on phone if OTP codes are requested (fingerprint/pin/password/pattern)
  • Add new OTP-Generator from Desktop, by inputting a private key and a display name.
sefaeyeoglu created this task.Dec 26 2018, 11:56 AM
sefaeyeoglu triaged this task as Wishlist priority.
maltes added a subscriber: maltes.Jan 15 2020, 5:26 PM
nihalani added a subscriber: nihalani.Jun 27 2020, 7:32 AM

So maybe not for kde connect but another kde app in general. I have found that this is needed as most services try to get you to store both passwords and your OTP for the same service which kinda of defeats the purpose of two factor authentication.

Ideal App:
Has the ability to receive both sms TFA and OTP.
When requested from the desktop, require some type of authentication
Display the list of codes

I would love to start working on this if people want to make an effort. This type of app/functionality isn't even available for closed source. The closest is Myki which stores your OTP on device and then requests to your browser through the extension.