Secure context: This feature is available only in secure contexts (HTTPS), in some or all supporting browsers.
Experimental: This is an experimental technology
Check the Browser compatibility table carefully before using this in production.
The OTPCredential interface of the WebOTP API is returned when a WebOTP navigator.credentials.get() call (i.e. invoked with an otp option) fulfills. It includes a code property that contains the retrieved one-time password (OTP).
This interface also inherits properties from Credential.
OTPCredential.code Read only Experimental
The one-time password (OTP).
None.
The below code triggers the browser's permission flow when an SMS message arrives. If permission is granted, then the promise resolves with an OTPCredential object. The contained code value is then set as the value of an <input> form element, which is then submitted.
navigator.credentials .get({ otp: { transport: ["sms"] }, signal: ac.signal, }) .then((otp) => { input.value = otp.code; if (form) form.submit(); }) .catch((err) => { console.error(err); });
Note: For a full explanation of the code, see the WebOTP API landing page. You can also see this code as part of a full working demo.
| Specification |
|---|
| WebOTP API # OTPCredential |
| Desktop | Mobile | |||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Chrome | Edge | Firefox | Opera | Safari | Chrome Android | Firefox for Android | Opera Android | Safari on IOS | Samsung Internet | WebView Android | ||
OTPCredential |
93 | 93 | No | 79 | No | 84 | No | 60 | No | 14.0 | No | |
code |
93 | 93 | No | 79 | No | 84 | No | 60 | No | 14.0 | No | |
© 2005–2023 MDN contributors.
Licensed under the Creative Commons Attribution-ShareAlike License v2.5 or later.
https://developer.mozilla.org/en-US/docs/Web/API/OTPCredential