This demo of the otpauth specification will add a new verification code generator to your password manager using a link or button — providing for a better experience than scanning a QR code or manually adding a secret key.
This demo works best alongside credentials that are saved in your authenticator app or password manager. Simulate an account registration below to save credentials for this demo in your passwords manager. This website () does not save credentials or validate them at sign-in. You are encouraged to use the default username.
Add a new verification code generator to your password manager using the button below or this link: Add to Password Manager
Your password manager will suggest adding the verification code generator to any saved credentials that match the issuer domain (e.g. ) listed in the otpauth URI.
other options: copy Secret Key or scan QR Code below.
Confirm that your password manager has saved the secret key and can generate new one-time codes every 30 seconds.
While developers often reference an “authenticator app” and show a QR code during setup, using a mobile device is entirely optional when setting up a verification code generator.
Show these fallback options to support platforms, browsers, or password managers that do not support otpauth links.
The otpauth URI scheme has provisional status with IANA, but there is no consistently applied industry specification for otpauth URLs (let alone an internet standard).
Apple and Google are aligned on an otpauth specification, but differ on the use of issuer label prefix and issuer parameter. This demo follows Apple’s recommendation to ensure password managers can use the issuer parameter to suggest credentials when adding a new verification code generator.
Google
“If both issuer parameter and issuer label prefix are present,
they should be equal.”
November 2018
Apple
The issuer parameter is “the domain of the site or app”
while the issuer label prefix is “the proper name of your service.”
WWDC 2021
“Use a button or link to open an otpauth: URL”
WWDC 2024