Authenticator
A modern TOTP authenticator desktop app built with Tauri v2, Svelte 5, and Rust. Designed with Material Design 3 Expressive guidelines.
Features
- TOTP code generation — RFC 6238 compliant (HMAC-SHA1, 6-digit, 30s period)
- 20+ brand icons — Snapchat, Google, GitHub, Discord, Facebook, Instagram, and more (Simple Icons, MIT)
- Quick paste — paste
name:password:secretto auto-fill all fields - Bulk import — import multiple accounts from a
.txtfile (one per line) - Drag-and-drop — drop a
.txtfile onto the app to import accounts - Edit accounts — change issuer, name, or secret key after adding
- Issuer picker — tap brand chips or avatar to quickly assign/change issuer
- Filter and search — filter by issuer chips, search by name or issuer
- Copy to clipboard — click any account row to copy the current code
- Custom titlebar — drag to move, double-click to maximize, native window controls
- Settings — version info, account count, data location, change storage path, check for updates
- Auto-updates — checks GitHub Releases for signed Tauri update bundles and installs them in-app
- Fully offline — Roboto Flex + Material Symbols fonts bundled locally
- M3 Expressive design — dark theme, proper color tokens, motion springs, accessibility
Tech Stack
| Layer | Technology |
|---|---|
| Backend | Rust + Tauri v2 |
| Frontend | Svelte 5 (runes) + SvelteKit |
| Styling | Tailwind CSS v4 + M3 design tokens |
| Fonts | Roboto Flex (variable) + Material Symbols Outlined |
| Icons | Simple Icons (simpleicons.org) |
| Linting | ESLint + Prettier |
Getting Started
Prerequisites
- Node.js (v20+)
- Rust (latest stable)
- Tauri prerequisites
Development
# Install dependencies
npm install
# Run in development mode
npm run tauri dev
# Or on Windows, double-click:
dev.bat
Build for production
npm run tauri build
The installer will be in src-tauri/target/release/bundle/.
If you want the produced app to support in-app updates, build with:
export TAURI_UPDATER_PUBKEY="$(cat /path/to/generated/public-key-file)"
export TAURI_UPDATER_ENDPOINT="https://github.com/designer9999/authenticator/releases/latest/download/latest.json"
export TAURI_SIGNING_PRIVATE_KEY="$HOME/.tauri/authenticator.key"
export TAURI_SIGNING_PRIVATE_KEY_PASSWORD=""
npm run tauri build
Automatic Updates
This project now uses the Tauri updater plugin instead of only comparing the latest GitHub tag.
Required release setup:
- Generate a signing key pair with
npm run tauri signer generate -- -w ~/.tauri/authenticator.key - Add
TAURI_SIGNING_PRIVATE_KEYandTAURI_SIGNING_PRIVATE_KEY_PASSWORDto GitHub Actions secrets - Add
TAURI_UPDATER_PUBKEYto GitHub Actions secrets or variables using the content of the generated public key - Publish releases through GitHub Actions so the release includes signed updater bundles and
latest.json
After that, installed builds can check, download, and install updates from:
https://github.com/designer9999/authenticator/releases/latest/download/latest.json
Account Format
Single account (quick paste)
username:password:SECRETKEY
Bulk import file (.txt)
Alice:pass123:JBSWY3DPEHPK3PXP
Bob:pass456:KRMVATZTJFZUC4BY
Charlie:pass789:GEZDGNBVGY3TQOJQ
The password field is ignored — only the name and base32 secret are used.
Data Storage
Accounts are stored in a local JSON file:
- Windows:
%APPDATA%/com.mjau.authenticator/accounts.json - macOS:
~/Library/Application Support/com.mjau.authenticator/accounts.json - Linux:
~/.config/com.mjau.authenticator/accounts.json
You can change the storage location in Settings.
License
MIT
Credits
- Tauri — desktop app framework
- Svelte — UI framework
- Simple Icons — brand SVG icons (MIT license)
- Material Design 3 — design system
- Roboto Flex — variable font
