TOTP Tester
Generate and verify time-based one-time password (TOTP) codes using your Base32 secret. Useful for validating MFA setup before deploying to production.
Spaces and lowercase letters are accepted. Invalid characters are rejected.
Enter a code and click Verify.
How to use this tester
TOTP is based on a shared secret and the current Unix timestamp. Both your authenticator app and your server run the same algorithm with the same time window. If clocks drift or the secret is malformed, users will see "invalid code" errors even when they type correctly.
This tester helps you validate those implementation details quickly. Paste the Base32 secret, choose the same period and digit length your server expects, and compare this generated code against the one in your authenticator app. If they match, your core configuration is correct.
The verify box checks the entered token against the current window and a small tolerance around it. That mirrors practical server-side behavior where one previous or next time step is often accepted to account for small clock differences.
Related Tools
JWT Secret Key Generator Online
Generate cryptographically secure random secret keys for JWT...
Strong Password Generator Online
Generate strong, random passwords with custom length, specia...
Free XML Sitemap Generator
Generate XML sitemaps for your website and submit to Google...
Meta Tag Analyzer & SEO Checker
Analyze and optimize meta title, description, and Open Graph...