A lightweight web-based Two-Factor Authentication (2FA) app built using Flask and JavaScript. It allows users to add TOTP accounts via manual key input or QR code scanning, with live code generation and smooth UI animations.
Built to function like Google Authenticator – right in your browser!
- 🔐 Generate TOTP codes (Time-based One-Time Passwords)
- 📷 Scan QR codes using webcam or image upload
- 💡 Toggle between Light/Dark mode (persists via
localStorage) - 🧹 Add, rename, and delete accounts with animations
- 🧠 Accounts stored in
accounts.jsonfor persistence - ⏱️ Circular countdown timers for code refresh
- 🖱️ Built-in rename and delete buttons with hover effects
- Backend: Flask (Python)
- Frontend: HTML, CSS, JavaScript
- QR Scanning: html5-qrcode
- Icons: Unicons
- TOTP: pyotp
git clone https://github.com/your-username/2fa-authenticator.git
cd 2fa-authenticatorpython -m venv venv
source venv/bin/activate # Linux/macOS
venv\Scripts\activate # Windowspip3 install flask pyotppython3 app.pyAll added accounts and their secrets are stored in accounts.json. This ensures:
- Accounts persist even after restarting the server.
- No data is lost unless accounts.json is deleted.
- Never expose this app to the public internet without implementing proper authentication.
- Secrets are stored in plain JSON, so anyone with access to the file has access to your 2FA accounts.
- This project is intended for local use or educational purposes only.
Ideas:
- Add encrypted storage using cryptography
- Export/Import backup
- Login authentication to protect the UI
- PWA support to install as a mobile app