Name: OTPClient
Author: Paolo Stivanin

Application for managing TOTP/HOTP tokens with built-in encryption

OTPClient is a secure and easy-to-use desktop client for TOTP and HOTP one-time passwords, built with GTK4 and libadwaita. Features:

multiple databases with sidebar management and cross-database search
token grouping with quick filtering
desktop search provider for GNOME Shell and KDE KRunner (opt-in trigger keyword)
command-line companion (otpclient-cli) with scriptable table/JSON/CSV output
support for TOTP, HOTP, and Steam codes
configurable digits (4 to 10), period (10 to 120 seconds), and algorithm (SHA1, SHA256, SHA512)
import and export of encrypted/plain Aegis backups
import and export of encrypted/plain Authenticator Pro and 2FAS backups
import and export of plain FreeOTP+ backups (key URI format)
import of Google Authenticator migration QR codes (file, screen, webcam, clipboard)
integration with the OS secret service provider via libsecret (opt-in)
local database encrypted with AES-256-GCM and Argon2id key derivation; plaintext lives only in libgcrypt secure memory while unlocked

Bug-fix release in the 5.0.x line. Headline fix is a hardening of the auto-lock flow: dismissing the unlock dialog (Esc, X, or click-outside) previously left the token list visible and interactive, so a single click would still copy an OTP — and "Show QR" would render the secret as a scannable image. The unlock dialog is now non-dismissable and a dedicated locked page hides the token list across every code path. Also recovers gracefully on systems where the registered Secret Service provider is broken (e.g. KDE Plasma with KWallet disabled): the setting is pre-flighted before being enabled and auto-disabled on runtime failure, instead of looping every launch.

FIX: lock bypass via unlock dialog dismissal — the token list was still clickable, allowing OTP copy and QR render while the app was "locked" (#447)
FIX: per-launch loop when the system Secret Service is unavailable; the toggle now pre-flights the keyring before being enabled, and auto-disables on runtime failure rather than nagging on every start (#446)
FIX: keyboard focus did not land on the token list after unlock, so Up/Down/Enter required a mouse click first; restored the 4.x default and extended it to the empty and no-database pages (#445)

Application for managing TOTP/HOTP tokens with built-in encryption

OTPClient is a secure and easy-to-use desktop client for TOTP and HOTP one-time passwords, built with GTK4 and libadwaita. Features:

multiple databases with sidebar management and cross-database search
token grouping with quick filtering
desktop search provider for GNOME Shell and KDE KRunner (opt-in trigger keyword)
command-line companion (otpclient-cli) with scriptable table/JSON/CSV output
support for TOTP, HOTP, and Steam codes
configurable digits (4 to 10), period (10 to 120 seconds), and algorithm (SHA1, SHA256, SHA512)
import and export of encrypted/plain Aegis backups
import and export of encrypted/plain Authenticator Pro and 2FAS backups
import and export of plain FreeOTP+ backups (key URI format)
import of Google Authenticator migration QR codes (file, screen, webcam, clipboard)
integration with the OS secret service provider via libsecret (opt-in)
local database encrypted with AES-256-GCM and Argon2id key derivation; plaintext lives only in libgcrypt secure memory while unlocked

FIX: lock bypass via unlock dialog dismissal — the token list was still clickable, allowing OTP copy and QR render while the app was "locked" (#447)
FIX: per-launch loop when the system Secret Service is unavailable; the toggle now pre-flights the keyring before being enabled, and auto-disables on runtime failure rather than nagging on every start (#446)
FIX: keyboard focus did not land on the token list after unlock, so Up/Down/Enter required a mouse click first; restored the 4.x default and extended it to the empty and no-database pages (#445)

OTPClient

Application for managing TOTP/HOTP tokens with built-in encryption

Những thay đổi ở phiên bản 5.0.5

Các đường dẫn

OTPClient

Application for managing TOTP/HOTP tokens with built-in encryption

Những thay đổi ở phiên bản 5.0.5

Các đường dẫn