What is TOTP and how does it work?

TOTP (Time-based One-Time Password) is the standard algorithm (RFC 6238) behind most two-factor authentication apps including Google Authenticator, Authy, and Microsoft Authenticator. It combines a shared secret key with the current time to generate a 6-digit verification code that changes every 30 seconds.

Does it work offline?

Yes. You can install 2FAA as a Progressive Web App (PWA) on your phone or desktop. Once installed, it works completely offline — no internet connection required to generate your 2FA codes.

How do I add a 2FA secret?

You can add secrets in three ways: (1) paste your Base32 secret key or otpauth:// URI directly, (2) upload a QR code image, or (3) scan a QR code with your camera. The secret is saved locally in your browser for quick access.

Free Online 2FA Authenticator

A free web-based 2FA authenticator — manage all your TOTP codes in one place. Everything runs locally in your browser.

What is TOTP?

TOTP (Time-based One-Time Password) is the standard algorithm (RFC 6238) behind most two-factor authentication apps including Google Authenticator, Authy, Microsoft Authenticator, and 1Password. It combines a shared secret key with the current time to generate a short-lived 6-digit verification code that changes every 30 seconds.

Is this tool safe?

Yes. Your secret key never leaves your browser. All TOTP code generation happens 100% client-side using JavaScript. No data is sent to any server. You can verify this by checking the network tab in your browser developer tools. The source code is open on GitHub.

How to use this 2FA code generator

Copy your 2FA secret key (Base32 string) from the service you want to authenticate with.
Paste it in the input field above, or scan the QR code using the Upload QR or Scan QR options.
Click "Generate Code" to get your current 6-digit verification code.
Click "Copy" and paste it into the login form. The next code is also shown for convenience.

Compatible authenticator services

This free online 2FA tool works with any service that supports standard TOTP two-factor authentication, including: Google, GitHub, AWS, Cloudflare, Discord, Dropbox, Facebook, Instagram, Twitter/X, Microsoft, Binance, Coinbase, and thousands more. Use it as a free web alternative to Google Authenticator, Authy, and other authenticator apps — no install required.

Works offline as a PWA

Install 2FAA on your phone or desktop as a Progressive Web App (PWA) for instant access. Once installed, it works completely offline — no internet connection required to generate your 2FA codes.