--- a/mod_auth_token/token_auth_utils.lib.lua Tue Apr 30 10:45:00 2019 +0100
+++ b/mod_auth_token/token_auth_utils.lib.lua Thu May 02 11:07:27 2019 +0200
@@ -48,7 +48,7 @@
local signature = base64.decode(string.match(password, " (.+)"))
local jid = username.."@"..realm
- if totp:verify(otp, OTP_DEVIATION, luatz.gmtime(luatz.time())) then
+ if totp:verify(otp, OTP_DEVIATION, luatz.time()) then
log("debug", "The TOTP was verified");
local hmac_ctx = hmac.new(token_secret, DIGEST_TYPE)
if signature == hmac_ctx:final(otp..nonce..jid) then