Sample code for 30+ languages & platforms
Objective-C

Duo Auth API - Async Auth

See more Duo Auth MFA Examples

If you enable async, then your application will be able to retrieve real-time status updates from the authentication process, rather than receiving no information until the process is complete.

Chilkat Objective-C Downloads

Objective-C
#import <NSString.h>
#import <CkoHttp.h>
#import <CkoHttpRequest.h>
#import <CkoHttpResponse.h>
#import <CkoJsonObject.h>
#import <CkoStringBuilder.h>

BOOL success = NO;

// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

NSString *integrationKey = @"DIMS3V5QDVG9J9ABRXC4";
NSString *secretKey = @"HWVQ46nubLBxhnRlKddTltWIi3hL0fIQF2qTvLab";

CkoHttp *http = [[CkoHttp alloc] init];

http.Accept = @"application/json";

// Use your own hostname here:
NSString *url = @"https://api-a03782e1.duosecurity.com/auth/v2/auth";

// This example requires Chilkat v9.5.0.89 or greater because Chilkat will automatically
// generate and send the HMAC signature for the requires based on the integration key and secret key.
http.Login = integrationKey;
http.Password = secretKey;

CkoHttpRequest *req = [[CkoHttpRequest alloc] init];
[req AddParam: @"username" value: @"matt"];
[req AddParam: @"factor" value: @"push"];
// The device ID can be obtained from the preauth response.  See Duo Preauth Example
[req AddParam: @"device" value: @"DP6GYVTQ5NK82BMR851F"];
// Add the async param to get an immediate response, then periodically check for updates to find out when the MFA authentication completes for fails.
[req AddParam: @"async" value: @"1"];

req.HttpVerb = @"POST";
req.ContentType = @"application/x-www-form-urlencoded";

CkoHttpResponse *resp = [[CkoHttpResponse alloc] init];
success = [http HttpReq: url request: req response: resp];
if (success == NO) {
    NSLog(@"%@",http.LastErrorText);
    return;
}

NSLog(@"%@%d",@"status code = ",[resp.StatusCode intValue]);

CkoJsonObject *json = [[CkoJsonObject alloc] init];
success = [json Load: resp.BodyStr];
json.EmitCompact = NO;
NSLog(@"%@",[json Emit]);

if ([resp.StatusCode intValue] != 200) {
    return;
}

// Sample successful output:

// status code = 200

// {
//   "stat": "OK",
//   "response": {
//     "txid": "45f7c92b-f45f-4862-8545-e0f58e78075a"
//   }
// }

NSString *txid = [json StringOf: @"response.txid"];

// Use your own hostname here:
CkoStringBuilder *sbUrl = [[CkoStringBuilder alloc] init];
[sbUrl Append: @"https://api-a03782e1.duosecurity.com/auth/v2/auth_status?txid="];
[sbUrl Append: txid];
NSString *url = [sbUrl GetAsString];

NSLog(@"%@%@",@"Auth status URL: ",url);

CkoStringBuilder *sbResult = [[CkoStringBuilder alloc] init];
NSString *responseStatus = 0;
NSString *responseStatus_msg = 0;

// Wait for a response...
int i = 0;
int maxWaitIterations = 100;
while (i < maxWaitIterations) {
    // Wait 3 seconds.
    [http SleepMs: [NSNumber numberWithInt: 3000]];

    NSLog(@"%@",@"Polling...");

    success = [http HttpNoBody: @"GET" url: url response: resp];
    if (success == NO) {
        NSLog(@"%@",http.LastErrorText);
        return;
    }

    if ([resp.StatusCode intValue] != 200) {
        NSLog(@"%@%d",@"error status code = ",[resp.StatusCode intValue]);
        NSLog(@"%@",resp.BodyStr);
        NSLog(@"%@",@"Failed.");
        return;
    }

    // Sample response:

    // 	{
    // 	  "stat": "OK",
    // 	  "response": {
    // 	    "result": "waiting",
    // 	    "status": "pushed",
    // 	    "status_msg": "Pushed a login request to your phone..."
    // 	  }
    // 	}

    [json Load: resp.BodyStr];

    // The responseResult can be "allow", "deny", or "waiting"
    [sbResult Clear];
    [json StringOfSb: @"response.result" sb: sbResult];
    responseStatus = [json StringOf: @"response.status"];
    responseStatus_msg = [json StringOf: @"response.status_msg"];

    NSLog(@"%@",[sbResult GetAsString]);
    NSLog(@"%@",responseStatus);
    NSLog(@"%@",responseStatus_msg);
    NSLog(@"%@",@"");

    if ([sbResult ContentsEqual: @"waiting" caseSensitive: YES] == YES) {
        i = i + 1;
    }
    else {
        // Force loop exit..
        i = maxWaitIterations;
    }

}

NSLog(@"%@",@"Finished.");