This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP JOTP Project"
Rob Upcraft (talk | contribs) (→Quick Download) |
Rob Upcraft (talk | contribs) (→OWASP jOTP) |
||
| Line 8: | Line 8: | ||
==OWASP jOTP== | ==OWASP jOTP== | ||
| − | OWASP jOTP is a microservice implemented in Java that can be used to generate, validate, and automatically expire one-time use password tokens | + | OWASP jOTP is a microservice implemented in Java that can be used to generate, validate, and automatically expire one-time use password tokens. |
==Description== | ==Description== | ||
Revision as of 22:35, 13 March 2016
OWASP jOTPOWASP jOTP is a microservice implemented in Java that can be used to generate, validate, and automatically expire one-time use password tokens. DescriptionA common use case for jOTP is as follows: 1. Client web application displays login page to user. 2. User enters username, password, and cell phone number. 3. Client application makes a call to jOTP, which subsequently generates a token and sends it to the user's cell phone. 4. The user receives the token, and enters it on the login page. 5. The client application contacts jOTP to validate the token. If the token was valid, along with the username/password (validated separately), the user is logged in. LicensingOWASP jOTP is available under the BSD 2-Clause License.
|
What is jOTP?OWASP jOTP provides:
Project LeaderRob Upcraft
|
Quick DownloadEmail ListOWASP jOTP Mailing List NOTE: Include "jOTP" in the subject heading of all emails to this list. News and EventsClassifications
| |||||||
