tronosfera/Law
1
0
Fork 0
mirror of https://github.com/TronoSfera/Law.git synced 2026-05-18 10:03:45 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions
Law/context/02_otp_service.md
TronoSfera 112ab43b34 first commit
2026-02-22 10:57:49 +03:00

350 B
Raw Blame History

OTP Service Context

Purpose

Secure access for:

  • Creating request
  • Viewing request

Flow

  1. Send OTP (CREATE_REQUEST / VIEW_REQUEST)
  2. Store hashed code
  3. Expire in 10 minutes
  4. Max attempts limit
  5. On verify -> issue public JWT cookie (7 days)

Anti-abuse

  • Rate limit (Redis)
  • Cooldown between sends
  • Lock after N failed attempts