Time-based One-time Password (TOTP) Block

A TOTP block is used to generate a unique and secure code, using the Secret Key as its foundation for authentication processes.

Note: The user must be able to generate Secret Key for the account they’d like to use for TOTP MFA for one time setup.

Note: The user must be able to install either one of the renowned providers authenticator apps.

Time-based One-time Password (TOTP) Collapsed Block

Here is a view of the fully expanded TOTP block:

Time-based One-time Password (TOTP) Expanded Block

The Block Header (TOTP Block)

The title of the block TOTP, it can be changed by double-clicking on it and typing in a new title.

Secret Key

This element contains the Secret Key previously obtained.

The left blue connector in the element is designed to receive the Secret Key input from another block in the workflow.

Result Code

The Result Code field is used to generate a code based on TOTP MFA. This code is necessary for successfully authenticating a process or session requiring MFA.

The right blue connector in the element outputs the code generated by the block.


The Algorithm field specifies the cryptographic method used to generate TOTPs, ensuring secure MFA.

This field adheres to the RFC 6238 standards set by the Internet Engineering Task Force (IETF), ensuring compatibility and security across systems.

Note: The TOTP block comes with SHA1 as the default algorithm setting, with allowable options as SHA256 and SHA512.


The Timeout field specifies the duration, in seconds, a generated authentication code remains valid before it expires. Users enter their desired time directly into the input box to modify this duration to suit their workflow requirements.

Note: The default value for Timeout is 30 seconds.

Code Size

The Code Size field determines the number of digits in the generated authentication code. This setting allows users to specify the length of their authentication codes.

Note: The default Code Size is 6 digits, with an allowable range from 1 to 10 digits.