This module provides command line access to OTP codes managed by Google Authenticator (or other applications). Users can exports credentials via QR codes, import credentials using these images, and generate OTP codes in a PowerShell terminal window.

This module is published to PSGallery, therefore it can be installed with the following command:

PS> Install-Module -Name OtpAuth -Verbose

Note, after installing the module call Import-Module to load it into the current session.

Beta releases are published to the GitHub Packages Registry:

• https://nuget.pkg.github.com/geoffodonnell/index.json

This module can be configured to manage credentials. Credentials are persisted in the credential store, which stores data in a KeePass database using pt.KeePassLibStd. To setup the credential store, call Initialize-OtpAuthCredentialStore and enter and confirm a password. In subsequent sessions, use Open-OtpAuthCredentialStore to make the credentials accessible.

PS C:\Users\admin> Initialize-OtpAuthCredentialStore
Set password for the new credential store.
Enter password: ********
Confirm password: ********

Created credential store: 'C:\Users\admin\AppData\Local\.otpauth\credentials.kdbx'

It is not neccessary to use the credential store to obtain a credential object for generating OTP codes.

Credentials can be imported from QR Code image exports from Google Authenticator (and others).

PS C:\Users\admin> Import-OtpAuthCredential -Path ".\test.png"

Id        : 31987bd3-3941-4719-b984-8e26003e90e5
Name      : user@example.com
Secret    : KeePassLib.Security.ProtectedString
Issuer    : Example
Algorithm : SHA1
Digits    : Six
Type      : TOTP
Counter   : 0
Created   : 3/21/2024 7:07:20 PM +00:00
Updated   : 3/21/2024 7:07:20 PM +00:00

The above command returns one or multiple credential objects.

Once the credential store has been initialized and opened, credentials can be directly imported from QR Code images.

PS C:\Users\admin> Import-OtpAuthCredential -Path ".\test.png" | Save-OtpAuthCredential

Once the credential store has been initialized and opened, credentials can be retrieved and used to generate OTP codes.

PS C:\Users\admin> Get-OtpAuthCredential -Issuer "Example" | Get-OtpAuthCode
894034

• .NET 8 SDK
• PowerShell 7.4

Clone this repository and execute build-and-load.ps1 in a PowerShell window to build the module and import it into the current session. By default, when building locally the module is named OtpAuth.Local.

powershell-outauth-module build pipelines use GitHub Actions workflows.

powershell-outauth-module is licensed under a MIT license except for the exceptions listed below. See the LICENSE file for details.

None.

Nothing in the repository constitutes professional and/or financial advice. Use this module at your own risk.