• enoent@lemmy.ilwwbs.com
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    Lemmy uses a SHA256 digest for its TOTP codes.

    Basically every other service (and therefore most authenticator apps) use SHA1.

    So although you provide the right secret, you get a different code because it’s derived from a different hashing mechanism

    • kamek@lemmy.fmhy.ml
      link
      fedilink
      arrow-up
      2
      ·
      1 year ago

      Ooooh ok cool. Sadly I’m using MS Authenticator so I can’t specify the type. I really don’t want to migrate to another one so hopefully this gets fixed I know there is a ticket open on github.