Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
-
I was wondering something along the line of this. Would it be unsecure to generate multiple OTPs without making the other ones obsolete? In this way if the user requests multiple OTPs, or the system sends two of them as in your case, the user could still log in.
Then once the user logs in, or a certain amount of time has passed, all the OTPs could be deleted. What do you think?
So here I am, skrewing around with the Google Authenticator app and the dodgiest base32 code generator I've ev...
Remember to always implement a backup solution if the first one fails.
Donβt break the experience for the us...
Flipkart needs to improve
How to implement freakin OTPs ...
Loggin in ...
Click on Request OTP -> Not available
Click on Forgot password -> Send the OTP to both phone and Email.
The OTPs on phone and mail must not be the same.
So basically, user can't Login by entering OTP received on one of mail or phone.
Just ... fk the user while logging in already ... Entering the order entry in the database in twenty one minutes will do the rest. π
- Flipkart
rant
forgotpassword
otp
flipkart