Steam Authenticator Not Supported

[jletallec]

I was able to extract the double authentication information from my steam account using the https://github.com/Jessecar96/SteamDesktopAuthenticator software.

I used to be able to put the link otpauth:// on Keepass, which worked fine and generated a Steam-specific authentication code (with 5 symbols like 4H3F9). Now, I've tried to put it back on pass-otp but it generates a basic code (6 digits, like 123456).

I've seen that there are projects to recreate the Steam code generation algorithm that work for me (see https://github.com/geekdada/steam-otp) but is there another way to do it on Pass?

[0xphk]

There was this discussion related to this topic.

Someone implemented a Perl replacement for oathtool, which itself isn't compatible with the steam 'digits=5' option in the URI. The tool Perl otptool instead, understands this URI parameter.

There was a commit in the develop branch which added the new method, though it was quite a ride to get it to work.

First, backup and replace the otp.bash in /usr/lib/password-store/extensions/ with the new v1.1.2 file from commit 0aadd4c

Install the Perl Pass::OTP tool.

For Debian install libpass-otp-perl (I did not test this) For Arch install perl-pass-otp from AUR (tested, works)

Check if installed correctly and which otptool returns the correct path.

Now add your otpauth:// URI to pass BUT replace steam to totp otpauth://steam/... -> otpauth://totp/...

Finally the creation of Steam TOTP secrets works with pass-otp.