That is really strange, I will have to look into that. The problem is that I don't build the F-Droid release myself, that is done by F-Droid. So I will have to contact them to figure this out.

Is there any technical reason why the minimum Android version is 5.1, not 5.0? I am trying to use an old phone as a dedicated, offline OTP device, and its Android version is unfortunately 5.0.1. I looked up the API changes, and there did not seem to be much of a difference between 5.0 and 5.1.

I discovered that the Google Authenticator app now has "Transfer accounts" menu. It seems to be transferring existing entries to GA on another phone. I am not sure how exactly that works, but if GA is generating OTP using the same standards, can't your app use that information to import entries from GA? I have tried scan the "Export" QR code of GA with your app's QR scan feature, but it said "Invalid QR code".

I forgot or misplaced my password. I am not sure I backed up the password, I cannot imagini would not.

If I did, where would I find the plaintext backup on my phone? Would it be on google drive,if so where?

How do I completely remove andOTP and any data it creates from my phone?
I tried uninstalling, rebooting and re-installing andOTP. It still asks for a password
I tried deleting all of the application's data, uninstalling, rebooting and re-installing andOTP. It still asks for a password
I do not have my phone rooted and have no interest in doing so.

Please help.

CodeScrubber said:

I forgot or misplaced my password. I am not sure I backed up the password, I cannot imagini would not.

If I did, where would I find the plaintext backup on my phone? Would it be on google drive,if so where?

How do I completely remove andOTP and any data it creates from my phone?
I tried uninstalling, rebooting and re-installing andOTP. It still asks for a password
I tried deleting all of the application's data, uninstalling, rebooting and re-installing andOTP. It still asks for a password
I do not have my phone rooted and have no interest in doing so.

Please help.

Click to expand...

The backup file can be anywhere, you can choose the location when creating a backup.

If you want to delete all data from andOTP the easiest way would be to go to your phones settings: Apps -> andOTP -> Storage and cache -> Clear storage (this can be called slightly different depending on your phone). This needs to be done while andOTP is still installed.
After that you can set it up again with a new password.

flocke000 said:

The backup file can be anywhere, you can choose the location when creating a backup.

If you want to delete all data from andOTP the easiest way would be to go to your phones settings: Apps -> andOTP -> Storage and cache -> Clear storage (this can be called slightly different depending on your phone). This needs to be done while andOTP is still installed.
After that you can set it up again with a new password.

Thanks, flocke000.

I tried deleting the data and cache, that did not work initially. I was also uninstalling and reinstalling the app as well as rebooting the phone.

Eventually, I just deleted the data and cache and nothing else, that worked.

One thing that would have helped me was a mention or link to the wiki near the top of the GitHub Home page. If one is not familiar with Github, the wiki tab is not obvious.

Sorry I didn't get around to deleting this post before you answered. Thanks for a nice app

Hi flocke000,

first thanks for your effort by developing with this app. I'm a little bit worried because I can't find the andOTP-App in the Play Store anymore. Did you replaced it with another app or has it been discontinued?

Would be glad to hear from you.

IT-Mechanic

It's not on the PlayStore anymore because Google made a mistake during the review. I submitted an appeal, but have not heard back from them yet. See this issue on Github: https://github.com/andOTP/andOTP/issues/954

But the development of andOTP has been stopped as well because of a lack of time on my side. I am currently working on a complete rewrite during the small amount of time I have.

OK thank you very much!

Hello everyone,

I have a difficult announcement to make: I am going to stop maintaining andOTP and working on the rewrite for the time being.

As you probably have noticed, andOTP hasn't been updated for about a year now.
I started andOTP when I was still in university and had a lot of time on my hand.
For the last 2.5 years I have been working full-time as software developer and found it increasingly hard to motivate myself to still do some coding in my free time after spending 8h/day coding at work.

The app will stay available on Google Play and F-Droid for the time being, but it won't be updated anymore.
The Github repository will always stay available, but the issues/pull requests will be locked and the repo will be archived.
Feel free to fork andOTP and develop your own app if you want, I just request that you use a different name and give the appropriate credit if you do so.

I might change my mind sometime in the future and resume development (at least of the rewrite), but I currently don't see that happen any time soon.

Thank you guys for all the support over the years and an especially big thanks to all contributors.

Jakob

Thanks for all the work flocke! andOTP was one of my first forays into open source contributions and I'll always appreciate you being open to PRs from newbies to the scene.

jsoberg said:

Thanks for all the work flocke! andOTP was one of my first forays into open source contributions and I'll always appreciate you being open to PRs from newbies to the scene.

And thank you for contributing to andOTP! I wouldn't have managed to maintain it as long as I did without contributors like you

Thanks for all the work!

But seriously, why lock/archive the repo instead of calling for help from others to carry the torch, keeping the project alive (without forcing a rename/fork)? A project should be able to outlive its founder.

I am a noob. Please be gentle with me.

1. My Android 12 is not rooted, and it has no Google Account
2. For privacy reasons that everyone understands
3. I used to get my email for years using the K9 MUA
4. Using login/password authentication
5. On May 30th, 2022 Google deprecated username/passwd authentication
6. Hence Android K-9 stopped working
7. But Windows Thunderbird (with OAuth2 via the web) worked fine
8. So I switched to FairMail because it supports OAuth2
9. However, it CREATED a Google Account on the phone
10. Which is no fault of the wonderful developer!
11. Who suggested I use an "otp" program instead of OAuth2
12. Because I don't like the privacy implications of 2FA/2SV/MSA/MSV
13. Which is what brought me to this thread.
    • andOTP - Android OTP Authenticator by Jakob Nixdorf
    • free, no ads, no gsf, rated 4.3, 100K+ installs
    • Google Play, F-Droid, GitHub, XDA

The problem is that I'm a noob, which means...

• I was using login/password on Android until May 30th
• Now I have to use "something else"
• Almost every "something else" requires 2FA/2SV/MFA/MSV
• Even "app passwords" do
• And I don't have any hardware or USB token equipment
• As I'm just a noob user who wants to read my email
• Using a 3rd-party MUA (becuase GMail also CREATES an account)

The issue with being a noob is I don't know how to USE an OTP app!
I haven't (yet) found a step-by-step tutorial for a user like me.

• I don't have a Google Account on my phone
• And I don't want one (so OAuth2 isn't available to me)
• I just want to log into my Google email account
• It seems that my only logical choice is 2FA/2SV/MFA/MSV

But I don't know what to put into the form when andOTP comes up.
And reading this thread didn't tell me what to put into the forms.

I guess I'm just supposed to know.
But I don't.

Did I mention I'm an noob yet?

Flocke's nicely written andOTP asks for one of three things:

1. Scan QR code
2. QR code from image
3. Enter details

Being a noob, but knowing "what" a QR code is, I first state that I have no idea whatsoever WHERE I'm supposed to GET that QR code; but luckily, there's that third option of manually entering the details.

The details Flocke's nicely written andOTP asks for are:

1. Type = TOTP (available are TOTP, HOTP, MOTP & STEAM)
2. Issuer = <blank> (editable)
3. Label = <blank> (editable)
4. Secret = <blank> (editable)
5. Tags = <blank> (editable)
6. Period 30 (editable)
7. Digits = 6 (editable)

My question...

Q: What is the typical set of details above (and where do I get them) for a typical noob who simply wants to sign into his Google email account using a 3rd-party MUA on an Android 12 non-rooted Samsung phone where the user does NOT have a Google Account set up (for privacy reasons)?