Lianja
Lianja
Duo Auth API - Async Auth
See more Duo Auth MFA Examples
If you enable async, then your application will be able to retrieve real-time status updates from the authentication process, rather than receiving no information until the process is complete.Chilkat Lianja Downloads
llSuccess = .F.
// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.
lcIntegrationKey = "DIMS3V5QDVG9J9ABRXC4"
lcSecretKey = "HWVQ46nubLBxhnRlKddTltWIi3hL0fIQF2qTvLab"
loHttp = createobject("CkHttp")
loHttp.Accept = "application/json"
// Use your own hostname here:
lcUrl = "https://api-a03782e1.duosecurity.com/auth/v2/auth"
// This example requires Chilkat v9.5.0.89 or greater because Chilkat will automatically
// generate and send the HMAC signature for the requires based on the integration key and secret key.
loHttp.Login = lcIntegrationKey
loHttp.Password = lcSecretKey
loReq = createobject("CkHttpRequest")
loReq.AddParam("username","matt")
loReq.AddParam("factor","push")
// The device ID can be obtained from the preauth response. See Duo Preauth Example
loReq.AddParam("device","DP6GYVTQ5NK82BMR851F")
// Add the async param to get an immediate response, then periodically check for updates to find out when the MFA authentication completes for fails.
loReq.AddParam("async","1")
loReq.HttpVerb = "POST"
loReq.ContentType = "application/x-www-form-urlencoded"
loResp = createobject("CkHttpResponse")
llSuccess = loHttp.HttpReq(lcUrl,loReq,loResp)
if (llSuccess = .F.) then
? loHttp.LastErrorText
release loHttp
release loReq
release loResp
return
endif
? "status code = " + str(loResp.StatusCode)
loJson = createobject("CkJsonObject")
llSuccess = loJson.Load(loResp.BodyStr)
loJson.EmitCompact = .F.
? loJson.Emit()
if (loResp.StatusCode <> 200) then
release loHttp
release loReq
release loResp
release loJson
return
endif
// Sample successful output:
// status code = 200
// {
// "stat": "OK",
// "response": {
// "txid": "45f7c92b-f45f-4862-8545-e0f58e78075a"
// }
// }
lcTxid = loJson.StringOf("response.txid")
// Use your own hostname here:
loSbUrl = createobject("CkStringBuilder")
loSbUrl.Append("https://api-a03782e1.duosecurity.com/auth/v2/auth_status?txid=")
loSbUrl.Append(lcTxid)
lcUrl = loSbUrl.GetAsString()
? "Auth status URL: " + lcUrl
loSbResult = createobject("CkStringBuilder")
// Wait for a response...
i = 0
lnMaxWaitIterations = 100
do while i < lnMaxWaitIterations
// Wait 3 seconds.
loHttp.SleepMs(3000)
? "Polling..."
llSuccess = loHttp.HttpNoBody("GET",lcUrl,loResp)
if (llSuccess = .F.) then
? loHttp.LastErrorText
release loHttp
release loReq
release loResp
release loJson
release loSbUrl
release loSbResult
return
endif
if (loResp.StatusCode <> 200) then
? "error status code = " + str(loResp.StatusCode)
? loResp.BodyStr
? "Failed."
release loHttp
release loReq
release loResp
release loJson
release loSbUrl
release loSbResult
return
endif
// Sample response:
// {
// "stat": "OK",
// "response": {
// "result": "waiting",
// "status": "pushed",
// "status_msg": "Pushed a login request to your phone..."
// }
// }
loJson.Load(loResp.BodyStr)
// The responseResult can be "allow", "deny", or "waiting"
loSbResult.Clear()
loJson.StringOfSb("response.result",loSbResult)
lcResponseStatus = loJson.StringOf("response.status")
lcResponseStatus_msg = loJson.StringOf("response.status_msg")
? loSbResult.GetAsString()
? lcResponseStatus
? lcResponseStatus_msg
? ""
if (loSbResult.ContentsEqual("waiting",.T.) = .T.) then
i = i + 1
else
// Force loop exit..
i = lnMaxWaitIterations
endif
enddo
? "Finished."
release loHttp
release loReq
release loResp
release loJson
release loSbUrl
release loSbResult