Sample code for 30+ languages & platforms
Visual FoxPro

Duo Auth API - Async Auth

See more Duo Auth MFA Examples

If you enable async, then your application will be able to retrieve real-time status updates from the authentication process, rather than receiving no information until the process is complete.

Chilkat Visual FoxPro Downloads

Visual FoxPro
LOCAL lnSuccess
LOCAL lcIntegrationKey
LOCAL lcSecretKey
LOCAL loHttp
LOCAL lcUrl
LOCAL loReq
LOCAL loResp
LOCAL loJson
LOCAL lcTxid
LOCAL loSbUrl
LOCAL lcUrl
LOCAL loSbResult
LOCAL lcResponseStatus
LOCAL lcResponseStatus_msg
LOCAL i
LOCAL lnMaxWaitIterations

lnSuccess = 0

* This example assumes the Chilkat API to have been previously unlocked.
* See Global Unlock Sample for sample code.

lcIntegrationKey = "DIMS3V5QDVG9J9ABRXC4"
lcSecretKey = "HWVQ46nubLBxhnRlKddTltWIi3hL0fIQF2qTvLab"

loHttp = CreateObject('Chilkat.Http')

loHttp.Accept = "application/json"

* Use your own hostname here:
lcUrl = "https://api-a03782e1.duosecurity.com/auth/v2/auth"

* This example requires Chilkat v9.5.0.89 or greater because Chilkat will automatically
* generate and send the HMAC signature for the requires based on the integration key and secret key.
loHttp.Login = lcIntegrationKey
loHttp.Password = lcSecretKey

loReq = CreateObject('Chilkat.HttpRequest')
loReq.AddParam("username","matt")
loReq.AddParam("factor","push")
* The device ID can be obtained from the preauth response.  See Duo Preauth Example
loReq.AddParam("device","DP6GYVTQ5NK82BMR851F")
* Add the async param to get an immediate response, then periodically check for updates to find out when the MFA authentication completes for fails.
loReq.AddParam("async","1")

loReq.HttpVerb = "POST"
loReq.ContentType = "application/x-www-form-urlencoded"

loResp = CreateObject('Chilkat.HttpResponse')
lnSuccess = loHttp.HttpReq(lcUrl,loReq,loResp)
IF (lnSuccess = 0) THEN
    ? loHttp.LastErrorText
    RELEASE loHttp
    RELEASE loReq
    RELEASE loResp
    CANCEL
ENDIF

? "status code = " + STR(loResp.StatusCode)

loJson = CreateObject('Chilkat.JsonObject')
lnSuccess = loJson.Load(loResp.BodyStr)
loJson.EmitCompact = 0
? loJson.Emit()

IF (loResp.StatusCode <> 200) THEN
    RELEASE loHttp
    RELEASE loReq
    RELEASE loResp
    RELEASE loJson
    CANCEL
ENDIF

* Sample successful output:

* status code = 200

* {
*   "stat": "OK",
*   "response": {
*     "txid": "45f7c92b-f45f-4862-8545-e0f58e78075a"
*   }
* }

lcTxid = loJson.StringOf("response.txid")

* Use your own hostname here:
loSbUrl = CreateObject('Chilkat.StringBuilder')
loSbUrl.Append("https://api-a03782e1.duosecurity.com/auth/v2/auth_status?txid=")
loSbUrl.Append(lcTxid)
lcUrl = loSbUrl.GetAsString()

? "Auth status URL: " + lcUrl

loSbResult = CreateObject('Chilkat.StringBuilder')

* Wait for a response...
i = 0
lnMaxWaitIterations = 100
DO WHILE i < lnMaxWaitIterations
    * Wait 3 seconds.
    loHttp.SleepMs(3000)

    ? "Polling..."

    lnSuccess = loHttp.HttpNoBody("GET",lcUrl,loResp)
    IF (lnSuccess = 0) THEN
        ? loHttp.LastErrorText
        RELEASE loHttp
        RELEASE loReq
        RELEASE loResp
        RELEASE loJson
        RELEASE loSbUrl
        RELEASE loSbResult
        CANCEL
    ENDIF

    IF (loResp.StatusCode <> 200) THEN
        ? "error status code = " + STR(loResp.StatusCode)
        ? loResp.BodyStr
        ? "Failed."
        RELEASE loHttp
        RELEASE loReq
        RELEASE loResp
        RELEASE loJson
        RELEASE loSbUrl
        RELEASE loSbResult
        CANCEL
    ENDIF

    * Sample response:

    * 	{
    * 	  "stat": "OK",
    * 	  "response": {
    * 	    "result": "waiting",
    * 	    "status": "pushed",
    * 	    "status_msg": "Pushed a login request to your phone..."
    * 	  }
    * 	}

    loJson.Load(loResp.BodyStr)

    * The responseResult can be "allow", "deny", or "waiting"
    loSbResult.Clear()
    loJson.StringOfSb("response.result",loSbResult)
    lcResponseStatus = loJson.StringOf("response.status")
    lcResponseStatus_msg = loJson.StringOf("response.status_msg")

    ? loSbResult.GetAsString()
    ? lcResponseStatus
    ? lcResponseStatus_msg
    ? ""

    IF (loSbResult.ContentsEqual("waiting",1) = 1) THEN
        i = i + 1
    ELSE
        * Force loop exit..
        i = lnMaxWaitIterations
    ENDIF

ENDDO

? "Finished."

RELEASE loHttp
RELEASE loReq
RELEASE loResp
RELEASE loJson
RELEASE loSbUrl
RELEASE loSbResult