{ "updatedAt": "2026-03-30T13:14:26.965Z", "createdAt": "2026-03-30T13:14:26.965Z", "id": "HDlrxGe1GI2uGKBV", "name": "OTP Verification System", "description": null, "active": true, "isArchived": false, "nodes": [ { "id": "wh-send", "name": "Receive OTP Request", "type": "n8n-nodes-base.webhook", "typeVersion": 2, "position": [ 0, 300 ], "parameters": { "httpMethod": "POST", "path": "send-otp", "responseMode": "responseNode", "options": {} } }, { "id": "code-gen", "name": "Validate and Generate OTP", "type": "n8n-nodes-base.code", "typeVersion": 2, "position": [ 220, 300 ], "parameters": { "jsCode": "const body = $input.first().json.body || $input.first().json;\nconst email = (body.email || '').trim().toLowerCase();\nconst name = (body.name || 'User').trim();\nconst purpose = body.purpose || 'verify';\nconst emailRegex = /^[^\\s@]+@[^\\s@]+\\.[^\\s@]+$/;\nif (!emailRegex.test(email)) { return [{ json: { valid: false, error: 'Invalid email address format', email, name, purpose } }]; }\nconst otp = Math.floor(100000 + Math.random() * 900000).toString();\nconst sessionId = 'OTP_' + Date.now() + '_' + Math.random().toString(36).substring(2, 8).toUpperCase();\nconst now = new Date();\nconst expiryTime = new Date(now.getTime() + 10 * 60 * 1000);\nconst purposeText = { login: 'log in to your account', signup: 'complete your registration', reset_password: 'reset your password', verify: 'verify your identity' }[purpose] || 'verify your identity';\nreturn [{ json: { valid: true, email, name, purpose, purpose_text: purposeText, otp, session_id: sessionId, generated_at: now.toISOString(), expiry_time: expiryTime.toISOString(), expiry_minutes: 10, attempts: 0 } }];" } }, { "id": "if-valid", "name": "Is Email Valid", "type": "n8n-nodes-base.if", "typeVersion": 2, "position": [ 440, 300 ], "parameters": { "conditions": { "options": { "caseSensitive": true, "leftValue": "", "typeValidation": "strict" }, "conditions": [ { "id": "c1", "leftValue": "={{ $json.valid }}", "rightValue": true, "operator": { "type": "boolean", "operation": "equals" } } ], "combinator": "and" } } }, { "id": "shape-otp-log", "name": "Shape OTP Log Data", "type": "n8n-nodes-base.code", "typeVersion": 2, "position": [ 660, 200 ], "parameters": { "jsCode": "return [{ json: { 'Timestamp': $json.generated_at, 'Email': $json.email, 'OTP Code': $json.otp, 'OTP Sent At': $json.generated_at, 'Verified At': 'Pending', 'Status': 'Sent', 'Attempts': 0, 'IP Address': '', 'Session ID': $json.session_id, 'Expiry Time': $json.expiry_time, _email: $json.email, _name: $json.name, _otp: $json.otp, _session_id: $json.session_id, _purpose_text: $json.purpose_text, _expiry_minutes: $json.expiry_minutes, _generated_at: $json.generated_at, _expiry_time: $json.expiry_time } }];" } }, { "id": "log-otp", "name": "Log OTP to Sheets", "type": "n8n-nodes-base.googleSheets", "typeVersion": 4.5, "position": [ 880, 200 ], "credentials": { "googleSheetsOAuth2Api": { "name": "" } }, "parameters": { "operation": "append", "documentId": { "__rl": true, "value": "1NUwfMYpOXuLI8ysTM0_siFxIL-jgNUGjFAD5AH2U-MY", "mode": "id" }, "sheetName": { "__rl": true, "value": "OTP_Log", "mode": "name" }, "columns": { "mappingMode": "autoMapInputData", "value": {}, "matchingColumns": [], "schema": [] }, "options": {} } }, { "id": "respond-success", "name": "Send OTP Success Response", "type": "n8n-nodes-base.respondToWebhook", "typeVersion": 1.1, "position": [ 1100, 200 ], "parameters": { "respondWith": "json", "responseBody": "={{ JSON.stringify({ success: true, message: 'OTP sent successfully to ' + $json._email, session_id: $json._session_id, expires_in_minutes: 10, hint: 'Check your email inbox and spam folder' }) }}", "options": { "responseCode": 200 } } }, { "id": "send-email", "name": "Send OTP Email", "type": "n8n-nodes-base.gmail", "typeVersion": 2.1, "position": [ 1320, 200 ], "credentials": { "gmailOAuth2": { "name": "" } }, "parameters": { "sendTo": "={{ $json._email }}", "subject": "={{ $json._otp + ' is your verification code' }}", "emailType": "html", "message": "={{ '

Verification Code

One-time password for ' + $json._purpose_text + '

Hello ' + $json._name + ',

Here is your one-time verification code. This code is valid for ' + $json._expiry_minutes + ' minutes.

Your OTP Code

' + $json._otp + '

Expires in ' + $json._expiry_minutes + ' minutes

Security notice: Never share this code with anyone.

Session ID: ' + $json._session_id + '
Valid until: ' + new Date($json._expiry_time).toLocaleString() + '

This is an automated message. Please do not reply.

' }}", "options": {} } }, { "id": "respond-error", "name": "Send Error Response", "type": "n8n-nodes-base.respondToWebhook", "typeVersion": 1.1, "position": [ 660, 420 ], "parameters": { "respondWith": "json", "responseBody": "={{ JSON.stringify({ success: false, error: $json.error, message: 'Please provide a valid email address' }) }}", "options": { "responseCode": 400 } } }, { "id": "wh-verify", "name": "Receive OTP Verification", "type": "n8n-nodes-base.webhook", "typeVersion": 2, "position": [ 0, 700 ], "parameters": { "httpMethod": "POST", "path": "verify-otp", "responseMode": "responseNode", "options": {} } }, { "id": "extract-submission", "name": "Extract Submission", "type": "n8n-nodes-base.code", "typeVersion": 2, "position": [ 220, 700 ], "parameters": { "jsCode": "const body = $input.first().json.body || $input.first().json;\nreturn [{ json: { submitted_otp: String(body.otp || '').trim(), submitted_email: String(body.email || '').trim().toLowerCase(), session_id: String(body.session_id || '').trim() } }];" } }, { "id": "read-otp", "name": "Read OTP Record", "type": "n8n-nodes-base.googleSheets", "typeVersion": 4.5, "position": [ 440, 700 ], "credentials": { "googleSheetsOAuth2Api": { "name": "" } }, "parameters": { "operation": "read", "documentId": { "__rl": true, "value": "1NUwfMYpOXuLI8ysTM0_siFxIL-jgNUGjFAD5AH2U-MY", "mode": "id" }, "sheetName": { "__rl": true, "value": "OTP_Log", "mode": "name" }, "filtersUI": { "values": [ { "lookupColumn": "Session ID", "lookupValue": "={{ $json.session_id }}" } ] }, "options": { "returnFirstMatch": true } } }, { "id": "if-record-found", "name": "Record Found", "type": "n8n-nodes-base.if", "typeVersion": 2, "position": [ 660, 700 ], "parameters": { "conditions": { "options": { "caseSensitive": true, "leftValue": "", "typeValidation": "strict" }, "conditions": [ { "id": "c3", "leftValue": "={{ $json['OTP Code'] !== undefined && $json['OTP Code'] !== '' }}", "rightValue": true, "operator": { "type": "boolean", "operation": "equals" } } ], "combinator": "and" } } }, { "id": "respond-not-found", "name": "Session Not Found Response", "type": "n8n-nodes-base.respondToWebhook", "typeVersion": 1.1, "position": [ 880, 820 ], "parameters": { "respondWith": "json", "responseBody": "={{ JSON.stringify({ success: false, message: 'OTP session not found. Please request a new OTP.', reason: 'SESSION_NOT_FOUND', session_id: $('Extract Submission').item.json.session_id }) }}", "options": { "responseCode": 400 } } }, { "id": "code-verify", "name": "Verify OTP Logic", "type": "n8n-nodes-base.code", "typeVersion": 2, "position": [ 880, 600 ], "parameters": { "jsCode": "const submission = $('Extract Submission').first().json;\nconst record = $input.first().json;\nconst submittedOtp = submission.submitted_otp;\nconst submittedEmail = submission.submitted_email;\nconst sessionId = submission.session_id;\nconst storedOtp = String(record['OTP Code'] || '').trim();\nconst storedEmail = String(record['Email'] || '').trim().toLowerCase();\nconst expiryTime = new Date(record['Expiry Time']);\nconst now = new Date();\nconst attempts = parseInt(record['Attempts'] || 0) + 1;\nif (record['Status'] === 'Verified') { return [{ json: { verified: false, reason: 'ALREADY_USED', message: 'This OTP has already been used.', email: submittedEmail, session_id: sessionId, attempts } }]; }\nif (now > expiryTime) { return [{ json: { verified: false, reason: 'EXPIRED', message: 'Your OTP has expired. Please request a new one.', email: submittedEmail, session_id: sessionId, attempts, expired_at: expiryTime.toISOString() } }]; }\nif (attempts > 5) { return [{ json: { verified: false, reason: 'TOO_MANY_ATTEMPTS', message: 'Too many failed attempts. Please request a new OTP.', email: submittedEmail, session_id: sessionId, attempts } }]; }\nif (submittedEmail !== storedEmail) { return [{ json: { verified: false, reason: 'EMAIL_MISMATCH', message: 'Email does not match this OTP session.', email: submittedEmail, session_id: sessionId, attempts } }]; }\nif (submittedOtp !== storedOtp) { return [{ json: { verified: false, reason: 'WRONG_OTP', message: 'Incorrect OTP. Please try again.', email: submittedEmail, session_id: sessionId, attempts, remaining_attempts: Math.max(0, 5 - attempts) } }]; }\nreturn [{ json: { verified: true, reason: 'SUCCESS', message: 'OTP verified successfully.', email: submittedEmail, session_id: sessionId, verified_at: now.toISOString(), attempts, token: 'VERIFIED_' + sessionId + '_' + Date.now() } }];" } }, { "id": "if-verified", "name": "Is OTP Valid", "type": "n8n-nodes-base.if", "typeVersion": 2, "position": [ 1100, 600 ], "parameters": { "conditions": { "options": { "caseSensitive": true, "leftValue": "", "typeValidation": "strict" }, "conditions": [ { "id": "c2", "leftValue": "={{ $json.verified }}", "rightValue": true, "operator": { "type": "boolean", "operation": "equals" } } ], "combinator": "and" } } }, { "id": "shape-success", "name": "Shape Success Update", "type": "n8n-nodes-base.code", "typeVersion": 2, "position": [ 1320, 500 ], "parameters": { "jsCode": "return [{ json: { 'Session ID': $json.session_id, 'Status': 'Verified', 'Verified At': $json.verified_at || '', 'Attempts': $json.attempts, _verified: true, _message: $json.message, _reason: $json.reason, _session_id: $json.session_id, _token: $json.token, _verified_at: $json.verified_at, _email: $json.email } }];" } }, { "id": "update-success", "name": "Update OTP Status in Sheets", "type": "n8n-nodes-base.googleSheets", "typeVersion": 4.5, "position": [ 1540, 500 ], "credentials": { "googleSheetsOAuth2Api": { "name": "" } }, "parameters": { "operation": "update", "documentId": { "__rl": true, "value": "1NUwfMYpOXuLI8ysTM0_siFxIL-jgNUGjFAD5AH2U-MY", "mode": "id" }, "sheetName": { "__rl": true, "value": "OTP_Log", "mode": "name" }, "columns": { "mappingMode": "autoMapInputData", "value": {}, "matchingColumns": [ "Session ID" ], "schema": [] }, "options": {} } }, { "id": "respond-verified", "name": "Verification Result Response", "type": "n8n-nodes-base.respondToWebhook", "typeVersion": 1.1, "position": [ 1760, 500 ], "parameters": { "respondWith": "json", "responseBody": "={{ JSON.stringify({ success: true, message: $json._message, reason: $json._reason, session_id: $json._session_id, token: $json._token || null, verified_at: $json._verified_at || null }) }}", "options": { "responseCode": 200 } } }, { "id": "send-success-email", "name": "Send Success Email", "type": "n8n-nodes-base.gmail", "typeVersion": 2.1, "position": [ 1980, 500 ], "credentials": { "gmailOAuth2": { "name": "" } }, "parameters": { "sendTo": "={{ $json._email }}", "subject": "\u2705 Identity Verified Successfully", "emailType": "html", "message": "={{ '
\u2705

Verified Successfully!

Your identity has been verified successfully.

\u2705 Email: ' + $json._email + '

\u2705 Verified at: ' + new Date($json._verified_at).toLocaleString() + '

' }}", "options": {} } }, { "id": "shape-fail", "name": "Shape Fail Update", "type": "n8n-nodes-base.code", "typeVersion": 2, "position": [ 1320, 720 ], "parameters": { "jsCode": "return [{ json: { 'Session ID': $json.session_id, 'Status': $json.reason, 'Attempts': $json.attempts, _message: $json.message, _reason: $json.reason, _session_id: $json.session_id, _remaining: $json.remaining_attempts, _email: $json.email } }];" } }, { "id": "update-fail", "name": "Update OTP Fail Status", "type": "n8n-nodes-base.googleSheets", "typeVersion": 4.5, "position": [ 1540, 720 ], "credentials": { "googleSheetsOAuth2Api": { "name": "" } }, "parameters": { "operation": "update", "documentId": { "__rl": true, "value": "1NUwfMYpOXuLI8ysTM0_siFxIL-jgNUGjFAD5AH2U-MY", "mode": "id" }, "sheetName": { "__rl": true, "value": "OTP_Log", "mode": "name" }, "columns": { "mappingMode": "autoMapInputData", "value": {}, "matchingColumns": [ "Session ID" ], "schema": [] }, "options": {} } }, { "id": "respond-fail", "name": "Verification Fail Response", "type": "n8n-nodes-base.respondToWebhook", "typeVersion": 1.1, "position": [ 1760, 720 ], "parameters": { "respondWith": "json", "responseBody": "={{ JSON.stringify({ success: false, message: $json._message, reason: $json._reason, session_id: $json._session_id, remaining_attempts: $json._remaining || null }) }}", "options": { "responseCode": 400 } } }, { "id": "send-fail-email", "name": "Send Failure Email", "type": "n8n-nodes-base.gmail", "typeVersion": 2.1, "position": [ 1980, 720 ], "credentials": { "gmailOAuth2": { "name": "" } }, "parameters": { "sendTo": "={{ $json._email }}", "subject": "={{ '\u274c OTP Verification Failed \u2014 ' + $json._reason }}", "emailType": "html", "message": "={{ '
\u274c

Verification Failed

' + $json._message + '

' + ($json._remaining > 0 ? '

\u26a0\ufe0f Attempts remaining: ' + $json._remaining + '

' : '

\ud83d\udd12 Please request a new OTP.

') + '

Reason code: ' + $json._reason + '

' }}", "options": {} } } ], "connections": { "Receive OTP Request": { "main": [ [ { "node": "Validate and Generate OTP", "type": "main", "index": 0 } ] ] }, "Validate and Generate OTP": { "main": [ [ { "node": "Is Email Valid", "type": "main", "index": 0 } ] ] }, "Is Email Valid": { "main": [ [ { "node": "Shape OTP Log Data", "type": "main", "index": 0 } ], [ { "node": "Send Error Response", "type": "main", "index": 0 } ] ] }, "Shape OTP Log Data": { "main": [ [ { "node": "Log OTP to Sheets", "type": "main", "index": 0 } ] ] }, "Log OTP to Sheets": { "main": [ [ { "node": "Send OTP Success Response", "type": "main", "index": 0 } ] ] }, "Send OTP Success Response": { "main": [ [ { "node": "Send OTP Email", "type": "main", "index": 0 } ] ] }, "Receive OTP Verification": { "main": [ [ { "node": "Extract Submission", "type": "main", "index": 0 } ] ] }, "Extract Submission": { "main": [ [ { "node": "Read OTP Record", "type": "main", "index": 0 } ] ] }, "Read OTP Record": { "main": [ [ { "node": "Record Found", "type": "main", "index": 0 } ] ] }, "Record Found": { "main": [ [ { "node": "Verify OTP Logic", "type": "main", "index": 0 } ], [ { "node": "Session Not Found Response", "type": "main", "index": 0 } ] ] }, "Verify OTP Logic": { "main": [ [ { "node": "Is OTP Valid", "type": "main", "index": 0 } ] ] }, "Is OTP Valid": { "main": [ [ { "node": "Shape Success Update", "type": "main", "index": 0 } ], [ { "node": "Shape Fail Update", "type": "main", "index": 0 } ] ] }, "Shape Success Update": { "main": [ [ { "node": "Update OTP Status in Sheets", "type": "main", "index": 0 } ] ] }, "Update OTP Status in Sheets": { "main": [ [ { "node": "Verification Result Response", "type": "main", "index": 0 } ] ] }, "Verification Result Response": { "main": [ [ { "node": "Send Success Email", "type": "main", "index": 0 } ] ] }, "Shape Fail Update": { "main": [ [ { "node": "Update OTP Fail Status", "type": "main", "index": 0 } ] ] }, "Update OTP Fail Status": { "main": [ [ { "node": "Verification Fail Response", "type": "main", "index": 0 } ] ] }, "Verification Fail Response": { "main": [ [ { "node": "Send Failure Email", "type": "main", "index": 0 } ] ] } }, "settings": { "executionOrder": "v1", "saveManualExecutions": true, "callerPolicy": "workflowsFromSameOwner", "availableInMCP": false }, "staticData": null, "meta": null, "versionId": "388006b6-f459-4683-b4dc-f9a0b79bc4c8", "activeVersionId": "388006b6-f459-4683-b4dc-f9a0b79bc4c8", "versionCounter": 16, "triggerCount": 2, "tags": [], "shared": [ { "updatedAt": "2026-03-30T13:14:26.968Z", "createdAt": "2026-03-30T13:14:26.968Z", "role": "workflow:owner", "workflowId": "HDlrxGe1GI2uGKBV", "projectId": "KaaB9eLEU6T6FdOr", "project": { "updatedAt": "2026-03-29T11:22:07.297Z", "createdAt": "2026-03-15T10:25:50.376Z", "id": "KaaB9eLEU6T6FdOr", "name": "Admin User ", "type": "personal", "icon": null, "description": null, "creatorId": "28a0614f-963b-453e-b373-b2cbab3d7b07" } } ] }