Skip to content

Commit

Permalink
Update files/en-us/web/api/webotp_api/index.md
Browse files Browse the repository at this point in the history 
Co-authored-by: Dipika Bhattacharya <[email protected]>
  • Loading branch information
@chrisdavidmills @dipikabh
chrisdavidmills and dipikabh authored Jul 20, 2023
1 parent 569441c commit 2240910
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion files/en-us/web/api/webotp_api/index.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ Example use cases include:

The WebOTP API allows web apps to expedite this validation process by copying the OTP from the SMS and passing it to the app automatically after the user has provided consent (most native platforms have an equivalent API).

Note that the OTP is also bound to the sending domain. This is a useful security constraint for verifying that the OTP is coming from the right source, which can mitigate the risk of phishing attacks during day-to-day reauthentication.
Note that an OTP is bound to the sending domain. This is a useful security constraint for verifying that the OTP is coming from the right source, which can mitigate the risk of phishing attacks during day-to-day reauthentication.

### Security concerns with SMS OTPs

Expand Down

0 comments on commit 2240910

Please sign in to comment.