Paddle Routes Staff Hub

Setup Instructions

1

Generate a TOTP secret

Run this in your terminal to generate a Base32 secret:

node -e "console.log(require('crypto').randomBytes(20).toString('base64').toUpperCase().replace(/[+/=]/g,c=>c==='+'?'A':c==='/'?'B':'').slice(0,32))"
2

Add it to your environment

Add to your .env.local:

STAFF_TOTP_SECRET=YOUR_SECRET_HERE STAFF_SESSION_SECRET=a-long-random-string-here NEXT_PUBLIC_SUPABASE_URL=... SUPABASE_SERVICE_ROLE_KEY=...
3

Scan into Google Authenticator

Open Google Authenticator, tap the + button, choose "Enter a setup key", and enter:

  • Account name: Paddle Routes Staff
  • Key: your STAFF_TOTP_SECRET value
  • Type: Time based
4

Sign in

Open the 6-digit code from Google Authenticator and enter it on the login page. Sessions last 8 hours.