For example, I want to get a HOTP that can only be used in 10 minutes.
Not TOTP cause it's possible that when users get the code there are only 10 seconds left.
Thanks @PaulHankin!
We can use the TOTP solution which can generate a one-time password every 1 minute, and when we got user’s input, we can check if there’s a TOTP generated in last 10 minutes matches it!