Hi HN. My name is Apoorve, I am 23 year old undergraduate student.<p>I share a lot of internet accounts (Netflix, prime etc.) with my friends and family, and recently have been in OTP (one-time-password) hell. I built Auto-OTP to securely send and receive OTPs from people I trust.<p>This is mostly meant as a beta release so please do check it out and share your feedback :)
I built something similar with Shortcuts or whatever the iOS automation thing is called.<p>1. Receive otp
2. Launch automation which posts entire message content to url
3. Broadcast message to other people in my circle.<p>It works fine so long as my OTPs arrive correctly.
Can someone explain what the use case for this is?<p>I clearly am not the target audience as I've never forwarded an OTP... but I'm curious what other people are doing that makes this needed.
You should probably define "OTP" somewhere on the page. Maybe just spell it out "One Time Password (OTP)" the first time you use it.
So this automatically degrades 2-factor to… 1 factor again. The security model doesn’t instill a lot of confidence in me, being that you expect user-interaction as a means of security. It’s already bad enough people are tying their OTP with their credentials in password managers…