otplib API Documentation / @otplib/core / constantTimeEqual

Function: constantTimeEqual()

constantTimeEqual(a, b): boolean

Defined in: packages/core/src/utils.ts:510

Constant-time comparison to prevent timing attacks

This implements a timing-safe equality check as recommended in RFC 4226 Section 7.2 for token validation to prevent timing side-channel attacks.

Parameters

a

First value to compare

string | Uint8Array<ArrayBufferLike>

b

Second value to compare

string | Uint8Array<ArrayBufferLike>

Returns

boolean

true if values are equal, false otherwise

See

RFC 4226 Section 7.2 - Validation and Verification

@otplib/core

Classes

Type Aliases

Variables

Functions

@otplib/hotp

Classes

Type Aliases

Functions

@otplib/plugin-base32-scure

Classes

Variables

@otplib/plugin-crypto-noble

Classes

Variables

@otplib/plugin-crypto-node

Classes

Variables

@otplib/plugin-crypto-web

Classes

Variables

@otplib/totp

Classes

Type Aliases

Functions

@otplib/uri

Classes

Type Aliases

Functions

otplib

Classes

Type Aliases

Functions

Function: constantTimeEqual()

Parameters

a

b

Returns

See

Function: constantTimeEqual() ​

Parameters ​

a ​

b ​

Returns ​

See ​

Function: constantTimeEqual()

Parameters

a

b

Returns

See