Skip to content

Instantly share code, notes, and snippets.

View deron-dev's full-sized avatar

deron deron-dev

1 follower · 1 following
  • Daktronics
View GitHub Profile
@deron-dev
deron-dev / OktaVerify_TOTP_Key_Exteaction.md
Created September 20, 2024 04:04 — forked from jakariyaa/OktaVerify_TOTP_Key_Exteaction.md
Okta Verify TOTP secret key can be extracted easily using curl and the code below.
  1. Get the content of the QR for Okta Verify app setup. It looks like this: oktaverify://[email protected]/?t=XXXXX&f=YYYYY&s=https://DOMAIN.okta.com&issuer=DOMAIN.okta.com&isIdxEnabled=true
  2. Replace XXXXX, YYYYY and DOMAIN to your values in curl below:
curl --request POST \
  --url https://DOMAIN.okta.com/idp/authenticators \
  --header 'Accept: application/json; charset=UTF-8' \
  --header 'Accept-Encoding: gzip, deflate' \
  --header 'Authorization: OTDT XXXXX' \
  --header 'Content-Type: application/json; charset=UTF-8' \